[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#912982: reportbug: ssl fails with selinux enforcing mode

control: tags -1 +moreinfo

On Mon, Nov 5, 2018 at 7:42 AM Jade McCormick <jade@heptet.us> wrote:
> I am trying to use reportbug on a selinux-enabled system in enforcing mode.
> It fails due to this AVC denial in the audit.log:
>
> type=AVC msg=audit(1541420721.386:9317): avc:  denied  { execmem } for  pid=17668 comm="reportbug" scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=process permissive=0

i'm not familiar with selinux, so i would need more details to
understand what's been denied and why.

>   File "/usr/lib/python3/dist-packages/reportbug/urlutils.py", line 151, in open_url
>     page = urlopen(url, proxies, timeout)
>   File "/usr/lib/python3/dist-packages/reportbug/urlutils.py", line 115, in urlopen
>     return requests.get(url, headers).text
>   File "/usr/lib/python3/dist-packages/requests/api.py", line 75, in get

from this backtrace, i dont think the issue is in reportbug itself,
it's more something along the line: "i'm denying access to a given
resource (and HTTPS URL I guess?) and so reportbug, when it tries to
access it, it fails"

-- 
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at Debian: http://wiki.debian.org/SandroTosi
G+: https://plus.google.com/u/0/+SandroTosi
Reply to: