PDA

View Full Version : Why so many "not defined in policy" errors in dmesg?



aiwha
18th November 2017, 06:03 AM
Fedora 26, Keeping update.
Kernel: 4.13.12-200.fc26.x86_64
SELinux: 3.13.1-260.14.fc26


[ 4.935716] SELinux: Permission getrlimit in class process not defined in policy.
[ 4.936710] SELinux: Class process2 not defined in policy.
[ 4.937690] SELinux: Permission map in class file not defined in policy.
[ 4.938672] SELinux: Permission map in class dir not defined in policy.
[ 4.939651] SELinux: Permission map in class lnk_file not defined in policy.
[ 4.940636] SELinux: Permission map in class chr_file not defined in policy.
[ 4.941618] SELinux: Permission map in class blk_file not defined in policy.
[ 4.942591] SELinux: Permission map in class sock_file not defined in policy.
[ 4.943557] SELinux: Permission map in class fifo_file not defined in policy.
[ 4.944506] SELinux: Permission map in class socket not defined in policy.
[ 4.945444] SELinux: Permission map in class tcp_socket not defined in policy.
[ 4.946368] SELinux: Permission map in class udp_socket not defined in policy.
[ 4.947267] SELinux: Permission map in class rawip_socket not defined in policy.
[ 4.948146] SELinux: Permission map in class netlink_socket not defined in policy.
[ 4.949036] SELinux: Permission map in class packet_socket not defined in policy.
[ 4.949913] SELinux: Permission map in class key_socket not defined in policy.
[ 4.950769] SELinux: Permission map in class unix_stream_socket not defined in policy.
[ 4.951625] SELinux: Permission map in class unix_dgram_socket not defined in policy.
[ 4.952482] SELinux: Permission map in class netlink_route_socket not defined in policy.
[ 4.953339] SELinux: Permission map in class netlink_tcpdiag_socket not defined in policy.
[ 4.954196] SELinux: Permission map in class netlink_nflog_socket not defined in policy.
[ 4.955054] SELinux: Permission map in class netlink_xfrm_socket not defined in policy.
[ 4.955905] SELinux: Permission map in class netlink_selinux_socket not defined in policy.
[ 4.956756] SELinux: Permission map in class netlink_iscsi_socket not defined in policy.
[ 4.957603] SELinux: Permission map in class netlink_audit_socket not defined in policy.
[ 4.958450] SELinux: Permission map in class netlink_fib_lookup_socket not defined in policy.
[ 4.959295] SELinux: Permission map in class netlink_connector_socket not defined in policy.
[ 4.960137] SELinux: Permission map in class netlink_netfilter_socket not defined in policy.
[ 4.960966] SELinux: Permission map in class netlink_dnrt_socket not defined in policy.
[ 4.961795] SELinux: Permission map in class netlink_kobject_uevent_socket not defined in policy.
[ 4.962628] SELinux: Permission map in class netlink_generic_socket not defined in policy.
[ 4.963464] SELinux: Permission map in class netlink_scsitransport_socket not defined in policy.
[ 4.964308] SELinux: Permission map in class netlink_rdma_socket not defined in policy.
[ 4.965160] SELinux: Permission map in class netlink_crypto_socket not defined in policy.
[ 4.966015] SELinux: Permission map in class appletalk_socket not defined in policy.
[ 4.966876] SELinux: Permission map in class dccp_socket not defined in policy.
[ 4.967743] SELinux: Permission map in class tun_socket not defined in policy.
[ 4.968611] SELinux: Class sctp_socket not defined in policy.
[ 4.969471] SELinux: Class icmp_socket not defined in policy.
[ 4.970326] SELinux: Class ax25_socket not defined in policy.
[ 4.971172] SELinux: Class ipx_socket not defined in policy.
[ 4.972013] SELinux: Class netrom_socket not defined in policy.
[ 4.972856] SELinux: Class atmpvc_socket not defined in policy.
[ 4.973695] SELinux: Class x25_socket not defined in policy.
[ 4.974537] SELinux: Class rose_socket not defined in policy.
[ 4.975384] SELinux: Class decnet_socket not defined in policy.
[ 4.976242] SELinux: Class atmsvc_socket not defined in policy.
[ 4.977100] SELinux: Class rds_socket not defined in policy.
[ 4.977968] SELinux: Class irda_socket not defined in policy.
[ 4.978840] SELinux: Class pppox_socket not defined in policy.
[ 4.979715] SELinux: Class llc_socket not defined in policy.
[ 4.980588] SELinux: Class can_socket not defined in policy.
[ 4.981458] SELinux: Class tipc_socket not defined in policy.
[ 4.982332] SELinux: Class bluetooth_socket not defined in policy.
[ 4.983201] SELinux: Class iucv_socket not defined in policy.
[ 4.984055] SELinux: Class rxrpc_socket not defined in policy.
[ 4.984921] SELinux: Class isdn_socket not defined in policy.
[ 4.985786] SELinux: Class phonet_socket not defined in policy.
[ 4.986657] SELinux: Class ieee802154_socket not defined in policy.
[ 4.987531] SELinux: Class caif_socket not defined in policy.
[ 4.988412] SELinux: Class alg_socket not defined in policy.
[ 4.989296] SELinux: Class nfc_socket not defined in policy.
[ 4.990170] SELinux: Class vsock_socket not defined in policy.
[ 4.991036] SELinux: Class kcm_socket not defined in policy.
[ 4.991893] SELinux: Class qipcrtr_socket not defined in policy.
[ 4.992740] SELinux: Class smc_socket not defined in policy.
[ 4.993582] SELinux: Class infiniband_pkey not defined in policy.
[ 4.994420] SELinux: Class infiniband_endport not defined in policy.
[ 4.995259] SELinux: the above unknown classes and permissions will be allowed

Should I reset selinux policy to the default to remove those errors? and how to reset to default?

Thanks a lot for your reply...