HPLIP

  1. Bug #427541
  2. Comment #8

Comment 8 for bug 427541

Revision history for this message
James Boulton (j-boulton) wrote :

Setup with hp-setup still does not work. But we have a new clue. SELinux gives warning:

Summary:

SELinux is preventing hp (hplip_t) "name_bind" howl_port_t.

Detailed Description:

SELinux denied access requested by hp. It is not expected that this access is
required by hp and this access may signal an intrusion attempt. It is also
possible that the specific version or configuration of the application is
causing it to require additional access.

Allowing Access:

You can generate a local policy module to allow this access - see FAQ
(http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable
SELinux protection altogether. Disabling SELinux protection is not recommended.
Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi)
against this package.

Additional Information:

Source Context system_u:system_r:hplip_t:s0-s0:c0.c1023
Target Context system_u:object_r:howl_port_t:s0
Target Objects None [ udp_socket ]
Source hp
Source Path /usr/lib/cups/backend/hp
Port 5353
Host stearman.veritide.co.nz
Source RPM Packages hplip-3.9.8-12.fc11
Target RPM Packages
Policy RPM selinux-policy-3.6.12-85.fc11
Selinux Enabled True
Policy Type targeted
MLS Enabled True
Enforcing Mode Enforcing
Plugin Name catchall
Host Name stearman.veritide.co.nz
Platform Linux stearman.veritide.co.nz
                              2.6.30.8-64.fc11.x86_64 #1 SMP Fri Sep 25 04:43:32
                              EDT 2009 x86_64 x86_64
Alert Count 1
First Seen Tue 27 Oct 2009 08:15:06 AM NZDT
Last Seen Tue 27 Oct 2009 08:15:06 AM NZDT
Local ID e125f4ca-288d-4de3-a758-3a47d3993102
Line Numbers

Raw Audit Messages

node=stearman.veritide.co.nz type=AVC msg=audit(1256584506.442:33766): avc: denied { name_bind } for pid=2814 comm="hp" src=5353 scontext=system_u:system_r:hplip_t:s0-s0:c0.c1023 tcontext=system_u:object_r:howl_port_t:s0 tclass=udp_socket

node=stearman.veritide.co.nz type=SYSCALL msg=audit(1256584506.442:33766): arch=c000003e syscall=49 success=no exit=-13 a0=6 a1=7fffd85453b0 a2=10 a3=7fffd8545094 items=0 ppid=1274 pid=2814 auid=4294967295 uid=4 gid=7 euid=4 suid=4 fsuid=4 egid=7 sgid=7 fsgid=7 tty=(none) ses=4294967295 comm="hp" exe="/usr/lib/cups/backend/hp" subj=system_u:system_r:hplip_t:s0-s0:c0.c1023 key=(null)