Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-5970

SELinux is preventing /usr/sbin/wpa_supplicant from using the 'bpf' capabilities

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • None
    • CentOS Stream 9
    • wpa_supplicant
    • None
    • Low
    • rhel-sst-networking-core
    • ssg_networking
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • ---
    • None

      Description of problem:

      SELinux is preventing /usr/sbin/wpa_supplicant from using the 'bpf' capabilities.

              • Plugin catchall (100. confidence) suggests **************************

      If you believe that wpa_supplicant should have the bpf capability by default.
      Then you should report this as a bug.
      You can generate a local policy module to allow this access.
      Do
      allow this access for now by executing:

      1. ausearch -c 'wpa_supplicant' --raw | audit2allow -M my-wpasupplicant
      2. semodule -X 300 -i my-wpasupplicant.pp

      Additional Information:
      Source Context system_u:system_r:NetworkManager_t:s0
      Target Context system_u:system_r:NetworkManager_t:s0
      Target Objects Unknown [ capability2 ]
      Source wpa_supplicant
      Source Path /usr/sbin/wpa_supplicant
      Port <Unknown>
      Host (removed)
      Source RPM Packages wpa_supplicant-2.10-4.el9.x86_64
      Target RPM Packages
      SELinux Policy RPM selinux-policy-targeted-38.1.3-1.el9.noarch
      Local Policy RPM selinux-policy-targeted-38.1.3-1.el9.noarch
      Selinux Enabled True
      Policy Type targeted
      Enforcing Mode Enforcing
      Host Name (removed)
      Platform Linux (removed) 5.14.0-214.el9.x86_64 #1 SMP
      PREEMPT_DYNAMIC Thu Dec 15 01:34:46 UTC 2022
      x86_64 x86_64
      Alert Count 33
      First Seen 2022-12-23 01:36:20 GMT
      Last Seen 2022-12-23 16:47:42 GMT
      Local ID 111cf57e-1666-446e-acd5-2198fa72a30d

      Raw Audit Messages
      type=AVC msg=audit(1671814062.695:340): avc: denied

      { bpf }

      for pid=1349 comm="wpa_supplicant" capability=39 scontext=system_u:system_r:NetworkManager_t:s0 tcontext=system_u:system_r:NetworkManager_t:s0 tclass=capability2 permissive=0

      type=SYSCALL msg=audit(1671814062.695:340): arch=x86_64 syscall=setsockopt success=yes exit=0 a0=c a1=1 a2=1a a3=56486cd453a0 items=0 ppid=1 pid=1349 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm=wpa_supplicant exe=/usr/sbin/wpa_supplicant subj=system_u:system_r:NetworkManager_t:s0 key=(null)

      Hash: wpa_supplicant,NetworkManager_t,NetworkManager_t,capability2,bpf

      Version-Release number of selected component (if applicable):

      How reproducible:

      Keeps cropping up after login to CentOS Stream 9

              dcaratti@redhat.com Davide Caratti
              lkdhiri Lalit Dhiri (Inactive)
              Davide Caratti Davide Caratti
              Laura Trivelloni Laura Trivelloni
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: