Hi!
I am trying to get p4d running in enforcing mode. The problem seem to be
that p4d can't read and write from sockets:
audit(1094655218.690:0): avc: denied { write } for pid=19802
exe=/usr/sbin/p4d path=socket:[52370] dev=sockfs ino=52370
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:initrc_t
tclass=tcp_socket
audit(1094655218.691:0): avc: denied { read } for pid=19870
exe=/usr/sbin/p4d path=socket:[52370] dev=sockfs ino=52370
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:initrc_t
tclass=tcp_socket
audit(1094655218.691:0): avc: denied { read } for pid=19870
exe=/usr/sbin/p4d path=socket:[52370] dev=sockfs ino=52370
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:initrc_t
tclass=tcp_socket
Is there any way I can modify the policies to allow this?
Best regards
Fredrik Jansson
--
gentoo-hardened@gentoo.org mailing list
I am trying to get p4d running in enforcing mode. The problem seem to be
that p4d can't read and write from sockets:
audit(1094655218.690:0): avc: denied { write } for pid=19802
exe=/usr/sbin/p4d path=socket:[52370] dev=sockfs ino=52370
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:initrc_t
tclass=tcp_socket
audit(1094655218.691:0): avc: denied { read } for pid=19870
exe=/usr/sbin/p4d path=socket:[52370] dev=sockfs ino=52370
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:initrc_t
tclass=tcp_socket
audit(1094655218.691:0): avc: denied { read } for pid=19870
exe=/usr/sbin/p4d path=socket:[52370] dev=sockfs ino=52370
scontext=system_u:system_r:initrc_t tcontext=system_u:system_r:initrc_t
tclass=tcp_socket
Is there any way I can modify the policies to allow this?
Best regards
Fredrik Jansson
--
gentoo-hardened@gentoo.org mailing list