Mandos server crash

[Erik Logtenberg]

Hi,

I am trying to run Mandos on Fedora 20. Everything compiles and installs
just fine, however running the server causes this crash:

Mandos [9551]: CRITICAL: D-Bus Exception
Traceback (most recent call last):
File "/usr/sbin/mandos", line 2858, in main service.activate()
File "/usr/sbin/mandos", line 390, in activate
self.server_state_changed(self.server.GetState())
File "/usr/lib/python2.7/site-packages/dbus/proxies.py", line 70, in
__call__ return self._proxy_method(*args, **keywords)
File "/usr/lib/python2.7/site-packages/dbus/proxies.py", line 145, in
__call__ **keywords)
File "/usr/lib/python2.7/site-packages/dbus/connection.py", line 651, in
call_blocking message, timeout)
DBusException: org.freedesktop.DBus.Error.NoReply: Did not receive a
reply. Possible causes include: the remote application did not send a
reply, the message bus security policy blocked the reply, the reply
timeout expired, or the network connection was broken.
jul 28 13:23:25 mandostest systemd[1]: mandos.service: main process
exited, code=exited, status=1/FAILURE
jul 28 13:23:25 mandostest systemd[1]: Unit mandos.service entered
failed state.

It takes a little while for this error to show up, in the mean time I
see that mandos is running and avahi-daemon is also started. I can't
connect to mandos server with mandos-monitor though, and after half a
minute or so it crashes with error message above.

I think this is SELinux related, since putting SELinux in permissive
mode seems to fix it. I do see mandos/dbus-related denials in audit.log:

type=USER_AVC msg=audit(1406547066.559:479): pid=241 uid=81
auid=4294967295 ses=4294967295
subj=system_u:system_r:system_dbusd_t:s0-s0:c0.c1023 msg='avc:  denied
{ send_msg } for msgtype=method_return dest=:1.38 spid=1152 tpid=9654
scontext=system_u:system_r:avahi_t:s0
tcontext=system_u:system_r:init_t:s0 tclass=dbus
exe="/usr/bin/dbus-daemon" sauid=81 hostname=? addr=? terminal=?'

Is there an SELinux policy for Mandos?

Thanks,

Erik.