Bug#912982: reportbug: ssl fails with selinux enforcing mode
control: tags -1 +moreinfo
On Mon, Nov 5, 2018 at 7:42 AM Jade McCormick <jade@heptet.us> wrote:
> I am trying to use reportbug on a selinux-enabled system in enforcing mode.
> It fails due to this AVC denial in the audit.log:
>
> type=AVC msg=audit(1541420721.386:9317): avc: denied { execmem } for pid=17668 comm="reportbug" scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=process permissive=0
i'm not familiar with selinux, so i would need more details to
understand what's been denied and why.
> File "/usr/lib/python3/dist-packages/reportbug/urlutils.py", line 151, in open_url
> page = urlopen(url, proxies, timeout)
> File "/usr/lib/python3/dist-packages/reportbug/urlutils.py", line 115, in urlopen
> return requests.get(url, headers).text
> File "/usr/lib/python3/dist-packages/requests/api.py", line 75, in get
from this backtrace, i dont think the issue is in reportbug itself,
it's more something along the line: "i'm denying access to a given
resource (and HTTPS URL I guess?) and so reportbug, when it tries to
access it, it fails"
--
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at Debian: http://wiki.debian.org/SandroTosi
G+: https://plus.google.com/u/0/+SandroTosi
Reply to: