FC5 hpiod AVC's

Bob Kashani bobk at ocf.berkeley.edu
Fri Mar 24 19:58:52 UTC 2006 

This is on a fresh install of FC5 with all the latest updates as of
March 24th.

libsepol-1.12.1-1.fc5
selinux-policy-2.2.25-2.fc5
selinux-policy-targeted-2.2.25-2.fc5
libsetrans-0.1.20-1.fc5
libselinux-python-1.30-1.fc5
libsemanage-1.6-1.fc5
libselinux-1.30-1.fc5
hplip-0.9.9-5.1
hpijs-0.9.9-5.1

[medieval at chaucer ~]$ audit2allow -d
allow hplip_t usb_device_t:chr_file { read write };

Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:2): avc:  denied
{ read write } for  pid=1733 comm="hpiod" name="001" \dev=tmpfs ino=4260
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:3): avc:  denied
{ read } for  pid=1733 comm="hpiod" name="001" dev=tm\pfs ino=4260
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:4): avc:  denied
{ read write } for  pid=1733 comm="hpiod" name="001" \dev=tmpfs ino=4208
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:5): avc:  denied
{ read } for  pid=1733 comm="hpiod" name="001" dev=tm\pfs ino=4208
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:6): avc:  denied
{ read write } for  pid=1733 comm="hpiod" name="001" \dev=tmpfs ino=4158
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:7): avc:  denied
{ read } for  pid=1733 comm="hpiod" name="001" dev=tm\pfs ino=4158
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:8): avc:  denied
{ read write } for  pid=1733 comm="hpiod" name="001" \dev=tmpfs ino=4108
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.812:9): avc:  denied
{ read } for  pid=1733 comm="hpiod" name="001" dev=tm\pfs ino=4108
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: ppdev: user-space parallel port driver
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:10): avc:  denied
{ read write } for  pid=1745 comm="hpiod" name="001"\ dev=tmpfs ino=4260
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:11): avc:  denied
{ read } for  pid=1745 comm="hpiod" name="001" dev=t\mpfs ino=4260
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:12): avc:  denied
{ read write } for  pid=1745 comm="hpiod" name="001"\ dev=tmpfs ino=4208
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:13): avc:  denied
{ read } for  pid=1745 comm="hpiod" name="001" dev=t\mpfs ino=4208
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:14): avc:  denied
{ read write } for  pid=1745 comm="hpiod" name="001"\ dev=tmpfs ino=4158
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:15): avc:  denied
{ read } for  pid=1745 comm="hpiod" name="001" dev=t\mpfs ino=4158
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:16): avc:  denied
{ read write } for  pid=1745 comm="hpiod" name="001"\ dev=tmpfs ino=4108
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file
Mar 24 11:41:49 chaucer kernel: audit(1143229305.992:17): avc:  denied
{ read } for  pid=1745 comm="hpiod" name="001" dev=t\mpfs ino=4108
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:usb_device_t:s0 tclass=chr_file

Bob

-- 
Bob Kashani
http://www.gnome.org/~bobk/

More information about the fedora-selinux-list mailing list