new avcs

Jason Dravet dravet at hotmail.com
Tue Jan 24 13:36:54 UTC 2006 

After todays rawhide updates avahi and hal no longer start.  Here are the 
messages in the audit.log.  I am running selinux-policy-targeted-2.2.2-1 in 
enforcing mode.  The other software is avahi-0.6.4-4 and hal-0.5.6-2.

Thanks,
Jason

----
time->Tue Jan 24 07:19:01 2006
type=PATH msg=audit(1138108741.041:9): item=0 name="/etc/blkid.tab" 
flags=401  inode=2098656 dev=fd:00 mode=0100644 ouid=0 ogid=0 rdev=00:00
type=CWD msg=audit(1138108741.041:9):  cwd="/"
type=SYSCALL msg=audit(1138108741.041:9): arch=40000003 syscall=33 
success=no exit=-13 a0=9676f08 a1=2 a2=98a164 a3=805cdc0 items=1 pid=1966 
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 
comm="mount" exe="/bin/mount"
type=AVC msg=audit(1138108741.041:9): avc:  denied  { write } for  pid=1966 
comm="mount" name="blkid.tab" dev=dm-0 ino=2098656 
scontext=system_u:system_r:mount_t:s0 tcontext=root:object_r:etc_t:s0 
tclass=file
----
time->Tue Jan 24 07:19:05 2006
type=PATH msg=audit(1138108745.294:10): item=0 flags=1  inode=1212726 
dev=fd:00 mode=0140777 ouid=0 ogid=0 rdev=00:00
type=SOCKETCALL msg=audit(1138108745.294:10): nargs=3 a0=c a1=bf9e107a a2=21
type=SOCKADDR msg=audit(1138108745.294:10): 
saddr=01002F7661722F72756E2F646275732F73797374656D5F6275735F736F636B6574
type=AVC_PATH msg=audit(1138108745.294:10):  
path="/var/run/dbus/system_bus_socket"
type=SYSCALL msg=audit(1138108745.294:10): arch=40000003 syscall=102 
success=no exit=-13 a0=3 a1=bf9e1040 a2=f555d4 a3=1f items=1 pid=2096 
auid=4294967295 uid=70 gid=70 euid=70 suid=70 fsuid=70 egid=70 sgid=70 
fsgid=70 comm="avahi-daemon" exe="/usr/sbin/avahi-daemon"
type=AVC msg=audit(1138108745.294:10): avc:  denied  { connectto } for  
pid=2096 comm="avahi-daemon" name="system_bus_socket" 
scontext=system_u:system_r:avahi_t:s0 tcontext=system_u:system_r:initrc_t:s0 
tclass=unix_stream_socket
----
time->Tue Jan 24 07:19:11 2006
type=PATH msg=audit(1138108751.178:11): item=0 flags=1  inode=1212726 
dev=fd:00 mode=0140777 ouid=0 ogid=0 rdev=00:00
type=SOCKETCALL msg=audit(1138108751.178:11): nargs=3 a0=3 a1=bfd631ca a2=21
type=SOCKADDR msg=audit(1138108751.178:11): 
saddr=01002F7661722F72756E2F646275732F73797374656D5F6275735F736F636B6574
type=AVC_PATH msg=audit(1138108751.178:11):  
path="/var/run/dbus/system_bus_socket"
type=SYSCALL msg=audit(1138108751.178:11): arch=40000003 syscall=102 
success=no exit=-13 a0=3 a1=bfd63190 a2=9d85d4 a3=1f items=1 pid=2127 
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 
comm="hald-add-selinu" exe="/usr/libexec/hald-add-selinux-mount-option"
type=AVC msg=audit(1138108751.178:11): avc:  denied  { connectto } for  
pid=2127 comm="hald-add-selinu" name="system_bus_socket" 
scontext=system_u:system_r:hald_t:s0 tcontext=system_u:system_r:initrc_t:s0 
tclass=unix_stream_socket
----
time->Tue Jan 24 07:19:11 2006
type=PATH msg=audit(1138108751.310:12): item=0 flags=1  inode=1212726 
dev=fd:00 mode=0140777 ouid=0 ogid=0 rdev=00:00
type=SOCKETCALL msg=audit(1138108751.310:12): nargs=3 a0=3 a1=bf93bcba a2=21
type=SOCKADDR msg=audit(1138108751.310:12): 
saddr=01002F7661722F72756E2F646275732F73797374656D5F6275735F736F636B6574
type=AVC_PATH msg=audit(1138108751.310:12):  
path="/var/run/dbus/system_bus_socket"
type=SYSCALL msg=audit(1138108751.310:12): arch=40000003 syscall=102 
success=no exit=-13 a0=3 a1=bf93bc80 a2=65f5d4 a3=1f items=1 pid=2129 
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 
comm="hald-add-selinu" exe="/usr/libexec/hald-add-selinux-mount-option"
type=AVC msg=audit(1138108751.310:12): avc:  denied  { connectto } for  
pid=2129 comm="hald-add-selinu" name="system_bus_socket" 
scontext=system_u:system_r:hald_t:s0 tcontext=system_u:system_r:initrc_t:s0 
tclass=unix_stream_socket
----
time->Tue Jan 24 07:19:11 2006
type=PATH msg=audit(1138108751.894:13): item=0 flags=1  inode=1212726 
dev=fd:00 mode=0140777 ouid=0 ogid=0 rdev=00:00
type=SOCKETCALL msg=audit(1138108751.894:13): nargs=3 a0=3 a1=bfa2b4fa a2=21
type=SOCKADDR msg=audit(1138108751.894:13): 
saddr=01002F7661722F72756E2F646275732F73797374656D5F6275735F736F636B6574
type=AVC_PATH msg=audit(1138108751.894:13):  
path="/var/run/dbus/system_bus_socket"
type=SYSCALL msg=audit(1138108751.894:13): arch=40000003 syscall=102 
success=no exit=-13 a0=3 a1=bfa2b4c0 a2=1805d4 a3=1f items=1 pid=2136 
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 
comm="hald-add-selinu" exe="/usr/libexec/hald-add-selinux-mount-option"
type=AVC msg=audit(1138108751.894:13): avc:  denied  { connectto } for  
pid=2136 comm="hald-add-selinu" name="system_bus_socket" 
scontext=system_u:system_r:hald_t:s0 tcontext=system_u:system_r:initrc_t:s0 
tclass=unix_stream_socket
----
time->Tue Jan 24 07:19:12 2006
type=PATH msg=audit(1138108752.022:14): item=0 flags=1  inode=1212726 
dev=fd:00 mode=0140777 ouid=0 ogid=0 rdev=00:00
type=SOCKETCALL msg=audit(1138108752.022:14): nargs=3 a0=d a1=bfaf0aba a2=21
type=SOCKADDR msg=audit(1138108752.022:14): 
saddr=01002F7661722F72756E2F646275732F73797374656D5F6275735F736F636B6574
type=AVC_PATH msg=audit(1138108752.022:14):  
path="/var/run/dbus/system_bus_socket"
type=SYSCALL msg=audit(1138108752.022:14): arch=40000003 syscall=102 
success=no exit=-13 a0=3 a1=bfaf0a80 a2=2e65d4 a3=1f items=1 pid=2107 
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 
comm="hald" exe="/usr/sbin/hald"
type=AVC msg=audit(1138108752.022:14): avc:  denied  { connectto } for  
pid=2107 comm="hald" name="system_bus_socket" 
scontext=system_u:system_r:hald_t:s0 tcontext=system_u:system_r:initrc_t:s0 
tclass=unix_stream_socket

More information about the selinux mailing list