SELinux is preventing NetworkManager from read access on the file /etc/sysctl.conf.
***** Plugin catchall (100. confidence) suggests ***************************
If you believe that NetworkManager should be allowed read access on the sysctl.conf file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# grep NetworkManager /var/log/audit/audit.log | audit2allow -M mypol
# semodule -i mypol.pp
Additional Information:
Source Context system_u:system_r:NetworkManager_t:s0
Target Context system_u:object_r:system_conf_t:s0
Target Objects /etc/sysctl.conf [ file ]
Source NetworkManager
Source Path NetworkManager
Port <Unknown>
Host l
Source RPM Packages
Target RPM Packages initscripts-9.34.2-1.fc16.x86_64
Policy RPM selinux-policy-3.10.0-80.fc16.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name l
Platform Linux l 3.3.2-6.fc16.x86_64 #1
SMP Sat Apr 21 12:43:20 UTC 2012 x86_64 x86_64
Alert Count 1
First Seen Sun 29 Apr 2012 05:46:22 AM PDT
Last Seen Sun 29 Apr 2012 05:46:22 AM PDT
Local ID 9020d642-4aec-4c27-92f7-432b4ffc06ec
Raw Audit Messages
type=AVC msg=audit(1335703582.220:144): avc: denied { read } for pid=988 comm="NetworkManager" name="sysctl.conf" dev="dm-1" ino=2491258 scontext=system_u:system_r:NetworkManager_t:s0 tcontext=system_u:object_r:system_conf_t:s0 tclass=file
Hash: NetworkManager,NetworkManager_t,system_conf_t,file ,read
audit2allow
#============= NetworkManager_t ==============
allow NetworkManager_t system_conf_t:file read;
audit2allow -R
#============= NetworkManager_t ==============
allow NetworkManager_t system_conf_t:file read;
I haven't made any policy changes, this seems to happen when I "resume" my wireless connection, I can reproduce it by suspending the laptop, and then resuming, I'm guessing nm tries to read the state of wlan0 to make sure it's working and selinux doesn't like it.
Thanks
Linear Mode
