ABRT captures SELinux alerts for /usr/libexec/gnome-settings-daemon regarding write access on directory /var/cache/coolkey
Issue
ABRTcapturesSELinuxalerts for/usr/libexec/gnome-settings-daemonregardingwriteaccess on directory/var/cache/coolkey
Additional Information:
:Source Context system_u:system_r:xdm_t:s0-s0:c0.c1023
:Target Context unconfined_u:object_r:rpm_var_cache_t:s0
:Target Objects /var/cache/coolkey [ dir ]
:Source gnome-settings-
:Source Path /usr/libexec/gnome-settings-daemon
:Port <Unknown>
:Host (removed)
:Source RPM Packages gnome-settings-daemon-3.8.6.1-2.el7.x86_64
:Target RPM Packages
:Policy RPM selinux-policy-3.12.1-103.el7.noarch
:Selinux Enabled True
:Policy Type targeted
:Enforcing Mode Enforcing
:Host Name (removed)
:Platform Linux (removed) 3.10.0-54.0.1.el7.x86_64 #1 SMP
: Tue Nov 26 16:51:22 EST 2013 x86_64 x86_64
:Alert Count 31
:First Seen 2013-12-12 13:39:05 EST
:Last Seen 2014-01-21 17:33:40 EST
:Local ID f2678b6d-6e26-49fe-851e-32aa846e485d
:
:Raw Audit Messages
:type=AVC msg=audit(1390343620.249:8468): avc: denied { write } for pid=7002 comm="gnome-settings-" name="coolkey" dev="dm-3" ino=28085 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:rpm_var_cache_t:s0 tclass=dir
:
:
:type=SYSCALL msg=audit(1390343620.249:8468): arch=x86_64 syscall=open success=no exit=EACCES a0=1a43ad0 a1=4c2 a2=180 a3=7fffa20ddf80 items=0 ppid=6980 pid=7002 auid=4294967295 uid=42 gid=42 euid=42 suid=42 fsuid=42 egid=42 sgid=42 fsgid=42 tty=(none) ses=4294967295 comm=gnome-settings- exe=/usr/libexec/gnome-settings-daemon subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 key=(null)
:
:Hash: gnome-settings-,xdm_t,rpm_var_cache_t,dir,write
Environment
- Red Hat Enterprise Linux 7 Beta
- Selinux Policy 3.12.1-105.el7
- Selinux-policy-3.12.1-103.el7
- ABRT-2.1.x-x.el7 Automatic Bug Reporting Tool
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
