[rsbac] apache2: error -1018

Amon Ott ao at rsbac.org
Mon Aug 27 08:53:01 CEST 2007


On Monday 27 August 2007 01:29, Intzoglu István wrote:
> First of all I'm new to rsbac and in spite of fact that everything
> seems work fine! except this:
>
> Starting web server (apache2)...0000000086|rsbac_adf_set_attr():
> request CREATE, pid 4412, uid 0, audit_uid 0, target_type IPC, tid
> Sem-ID 0, new_target_type NONE, new_tid NONE, attr none, value 0,
> error -1018 0000000087|newary() [sys_semget()]:
> rsbac_adf_set_attr() returned error<7>

It seems that Sem IDs may legally be 0, so the check is wrong here. 
The attached patch disables the check in this case, it is already in 
svn.

> when I shutdown the computer:
>
> 0000000132|rsbac_adf_request(): request CLOSE, pid 4461, ppid 4420,
> prog_name apache2, prog_file /usr/sbin/apache2, uid 33, target_type
> FILE, tid Device 00:07 Inode 455 Path
> anon_inode:/anon_inode:/[eventpoll], attr f_mode, value 3, result
> UNDEFINED by ADF

Any other RSBAC log messages around that message? UNDEFINED should 
never happen with CLOSE on FILE targets, even on a pseudo fs.

Amon.
-- 
http://www.rsbac.org - GnuPG: 2048g/5DEAAA30 2002-10-22
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipcsem0.diff
Type: text/x-diff
Size: 756 bytes
Desc: not available
Url : http://www.rsbac.org/pipermail/rsbac/attachments/20070827/ed1332bb/attachment.bin 


More information about the rsbac mailing list