gnome and dbus

gnome and dbus

[Russell Coker]

type=AVC msg=audit(1236164018.240:156): avc:  denied  { execute_no_trans } for  
pid=6554 comm="dbus-daemon" path="/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon" 
dev=hda2 ino=393873 
scontext=unconfined_u:unconfined_r:system_dbusd_t:s0-s0:c0.c1023 
tcontext=system_u:object_r:lib_t:s0 tclass=file

So what would this gnome-vfs-daemon program be and why would a dbus-daemon 
process be running it?

-- 
russell@coker.com.au
http://etbe.coker.com.au/          My Main Blog
http://doc.coker.com.au/           My Documents Blog

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: gnome and dbus

[Russell Coker]

On Wed, 4 Mar 2009, Russell Coker <russell@coker.com.au> wrote:
> type=AVC msg=audit(1236164018.240:156): avc:  denied  { execute_no_trans }
> for pid=6554 comm="dbus-daemon"
> path="/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon" dev=hda2 ino=393873
> scontext=unconfined_u:unconfined_r:system_dbusd_t:s0-s0:c0.c1023
> tcontext=system_u:object_r:lib_t:s0 tclass=file
>
> So what would this gnome-vfs-daemon program be and why would a dbus-daemon
> process be running it?

Also for reference I get the same from the user_r role.

type=AVC msg=audit(1236165516.836:2178): avc:  denied  { execute_no_trans } 
for  pid=8208 comm="dbus-daemon" 
path="/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon" dev=hda2 ino=393873 
scontext=user_u:user_r:user_dbusd_t:s0 tcontext=system_u:object_r:lib_t:s0 
tclass=file
type=SYSCALL msg=audit(1236165516.836:2178): arch=40000003 syscall=11 
success=no exit=-13 a0=b9047898 a1=b9045fe0 a2=b9048ef8 a3=b9048c58 items=0 
ppid=8207 pid=8208 auid=4294967295 uid=1001 gid=1001 euid=1001 suid=1001 
fsuid=1001 egid=1001 sgid=1001 fsgid=1001 tty=(none) ses=4294967295 
comm="dbus-daemon" exe="/usr/bin/dbus-daemon" 
subj=user_u:user_r:user_dbusd_t:s0 key=(null)

-- 
russell@coker.com.au
http://etbe.coker.com.au/          My Main Blog
http://doc.coker.com.au/           My Documents Blog

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: gnome and dbus

[Stephen Smalley]

On Wed, 2009-03-04 at 22:04 +1100, Russell Coker wrote:
> type=AVC msg=audit(1236164018.240:156): avc:  denied  { execute_no_trans } for  
> pid=6554 comm="dbus-daemon" path="/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon" 
> dev=hda2 ino=393873 
> scontext=unconfined_u:unconfined_r:system_dbusd_t:s0-s0:c0.c1023 
> tcontext=system_u:object_r:lib_t:s0 tclass=file
> 
> So what would this gnome-vfs-daemon program be and why would a dbus-daemon 
> process be running it?

In Fedora, it is installed as /usr/libexec/gnome-vfs-daemon.
And the dbus config for it is installed
as /usr/share/dbus-1/services/gnome-vfs-daemon.service.

These postings might be useful in understanding it, although they are
old:
http://mail.gnome.org/archives/gtk-devel-list/2006-September/msg00072.html
http://mail.gnome.org/archives/gtk-devel-list/2007-February/msg00062.html

-- 
Stephen Smalley
National Security Agency


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.