unconfined_execmem_t and dbus,avahi
Tom London
selinux at gmail.com
Wed Sep 19 14:42:58 UTC 2007
Running latest Rawhide, targeted/enforcing.
I run rhythmbox in 'unconfined_execmem_t' to allow it to load an MP3
library (allows me to play stuff from my iPod).
I get the following AVCs (the first from /var/log/messages). (I'm
guessing the second is from rhythmbox too).
Sep 19 07:17:25 localhost dbus: avc: denied { acquire_svc } for
service=org.gnome.Rhythmbox spid=5080
scontext=system_u:system_r:unconfined_execmem_t:s0
tcontext=system_u:system_r:unconfined_t:s0 tclass=dbus
type=USER_AVC msg=audit(1190211461.162:23): user pid=3090 uid=81
auid=4294967295 subj=system_u:system_r:system_dbusd_t:s0 msg='avc:
denied { send_msg } for msgtype=method_call
interface=org.freedesktop.Avahi.Server member=GetAPIVersion
dest=org.freedesktop.Avahi spid=5080 tpid=4092
scontext=system_u:system_r:unconfined_execmem_t:s0
tcontext=system_u:system_r:avahi_t:s0 tclass=dbus :
exe="/bin/dbus-daemon" (sauid=81, hostname=?, addr=?, terminal=?)'
Issues to allow such?
tom
--
Tom London
More information about the fedora-selinux-list
mailing list