15151782bd
On Debian 10, when gpg-agent starts, it reads crypto.fips_enabled: type=AVC msg=audit(1569958604.280:42): avc: denied { open } for pid=329 comm="gpg-agent" path="/proc/sys/crypto/fips_enabled" dev="proc" ino=14687 scontext=sysadm_u:sysadm_r:gpg_agent_t tcontext=system_u:object_r:sysctl_crypto_t tclass=file permissive=1 type=AVC msg=audit(1569958604.280:42): avc: denied { read } for pid=329 comm="gpg-agent" name="fips_enabled" dev="proc" ino=14687 scontext=sysadm_u:sysadm_r:gpg_agent_t tcontext=system_u:object_r:sysctl_crypto_t tclass=file permissive=1 Signed-off-by: Nicolas Iooss <nicolas.iooss@m4x.org> |
||
---|---|---|
.. | ||
flask | ||
modules | ||
support | ||
constraints | ||
context_defaults | ||
global_booleans | ||
global_tunables | ||
mcs | ||
mls | ||
policy_capabilities | ||
users |