[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: f16 x86_64 :: kwin - execmem



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 02/19/2012 03:02 AM, Adrian Sevcenco wrote:
> Hi! i have this situation in which kwin (which is strange as the
> command reported is firefox) tries to map a memory region as
> executable and writable. The advice is to report to bugzilla .. 
> before doing this, did someone else encountered this?
> 
> Thanks, Adrian
> 
> SELinux is preventing /usr/bin/kwin from execmem access on the None
> .
> 
> *****  Plugin catchall (100. confidence) suggests 
> ***************************
> 
> If you believe that kwin should be allowed execmem access on the 
> <Unknown> by default. Then you should report this as a bug. You can
> generate a local policy module to allow this access. Do allow this
> access for now by executing: # grep kwin /var/log/audit/audit.log |
> audit2allow -M mypol # semodule -i mypol.pp
> 
> Additional Information: Source Context 
> unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1 023 Target
> Context unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1 023 
> Target Objects                 [ None ] Source
> kwin Source Path                   /usr/bin/kwin Port
> <Unknown> Host                          adrian.home Source RPM
> Packages           firefox-10.0.1-1.fc16.x86_64 Target RPM
> Packages Policy RPM
> selinux-policy-3.10.0-75.fc16.noarch Selinux Enabled
> True Policy Type                   targeted Enforcing Mode
> Permissive Host Name                     adrian.home Platform
> Linux adrian.home 3.2.6-3.fc16.x86_64 #1 SMP Mon Feb 13 20:35:42
> UTC 2012 x86_64 x86_64 Alert Count                   13 First Seen
> Sat 18 Feb 2012 02:55:59 PM EET Last Seen                     Sun
> 19 Feb 2012 09:53:32 AM EET Local ID
> 5f799950-b58d-4cda-af92-f71bb4d4652c
> 
> Raw Audit Messages type=AVC msg=audit(1329638012.530:69): avc:
> denied  { execmem } for pid=2360 comm="firefox" 
> scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 
> tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 
> tclass=processnode=adrian.home type=SYSCALL 
> msg=audit(1329638012.530:69): arch=c000003e syscall=9 success=yes 
> exit=140493093380096 a0=0 a1=10000 a2=7 a3=22 items=0 ppid=1634
> pid=2360 auid=1000 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000
> egid=1000 sgid=1000 fsgid=1000 tty=(none) ses=1 comm="firefox" 
> exe="/usr/lib64/firefox/firefox" 
> subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
> key=(null)
> 
> 
> 
> -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx 
> https://admin.fedoraproject.org/mailman/listinfo/selinux

Wow that is strange.  I would just turn on the allow_execmem boolean,
which is not on by default in F16.

The kwin problem looks like something went wrong within setroubleshoot.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk9CfWwACgkQrlYvE4MpobNDLgCguADFilSm8bFIO13ZJJWt3wgt
usUAoIs9wy91h0UddaAoYbndZ6qJ1mfO
=2+H7
-----END PGP SIGNATURE-----
--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux



[Fedora Users]     [Fedora Legacy]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite Photos]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

Powered by Linux

Google
  Web www.spinics.net