search

fedora-selinux / selinux-policy

selinux-policy for Fedora is a large patch off the mainline
GNU General Public License v2.0
156 stars 157 forks source link

Allow virt_driver_domain dbus chat with policykit #2176

Closed zpytela closed 2 weeks ago

zpytela commented 2 weeks ago

The commit addresses the following USER_AVC denial: type=USER_AVC msg=audit(06/10/2024 07:35:27.376:681) : pid=551 uid=dbus auid=unset ses=unset subj=system_u:system_r:system_dbusd_t:s0-s0:c0.c1023 msg='avc: denied { send_msg } for scontext=system_u:system_r:virtnetworkd_t:s0 tcontext=system_u:system_r:policykit_t:s0 tclass=dbus permissive=0 exe=/usr/bin/dbus-broker sauid=dbus hostname=? addr=? terminal=?'

Resolves: RHEL-40346