Bug 468878

Summary:	pump does not work with SELinux
Product:	Gentoo Linux	Reporter:	Sven Vermeulen (RETIRED) <swift>
Component:	SELinux	Assignee:	Sven Vermeulen (RETIRED) <swift>
Status:	VERIFIED FIXED
Severity:	normal	CC:	selinux
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:	sec-policy r1
Package list:		Runtime testing required:	---

Description Sven Vermeulen (RETIRED) gentoo-dev

2013-05-07 14:28:53 UTC

The pump DHCP client fails to work on SELinux

"""
~# pump -i eth0
~# echo $?
1
"""

No process is running, and the denial shows that it tries to create a socket file in /var/run. Grant it the right to create one with a file transition to dhcpc_var_run_t:

"""
~# pump -i eth0
failed to connect to localhost:bootpc: Connection refused
"""

Denials show continuous attempts to "accept" on its own unix_stream_socket. Allowing further asks for "listen" and "connectto". Once assigned, pump seems to work again.

Reproducible: Always

Comment 1 Sven Vermeulen (RETIRED) gentoo-dev

2013-12-29 15:25:15 UTC

Waited long enough, added to policy, will be in rev 5

Comment 2 Sven Vermeulen (RETIRED) gentoo-dev

2014-03-24 19:37:43 UTC

It's in 20140311-r1

Comment 3 Sven Vermeulen (RETIRED) gentoo-dev

2014-04-19 19:08:12 UTC

Stable