SELinux and gtkam
W. Michael Petullo
mike at flyn.org
Sat Apr 17 15:01:53 UTC 2004
The digital camera application gtkam does not seem to want to play nicely
with SELinux. Gtkam needs to access /proc/bus/usb because it uses libusb.
When I try to run gtkam as a user (user_u:user_r:user_t) I get:
Apr 17 09:57:47 imp kernel: avc: denied { read } for pid=3620 exe=/usr/bin/gtkam dev= ino=724 scontext=user_u:user_r:user_t tcontext=system_u:object_r:usbfs_t tclass=dir
Apr 17 09:57:47 imp kernel:
Apr 17 09:57:47 imp kernel: avc: denied { search } for pid=3620 exe=/usr/bin/gtkam dev= ino=1 scontext=user_u:user_r:user_t tcontext=system_u:object_r:sysfs_t tclass=dir
Do we need a new domain like gtkam_t, gphoto_t or libusb_t?
--
Mike
:wq
More information about the fedora-selinux-list
mailing list