View Issue Details

IDProjectCategoryView StatusLast Update
0013878CentOS-7selinux-policypublic2019-03-21 13:57
Reporteriloken 
PrioritynormalSeverityminorReproducibilityhave not tried
Status newResolutionopen 
PlatformOSOS Version7
Product Version 
Target VersionFixed in Version 
Summary0013878: SELinux is preventing geoclue from 'search' accesses on the directory 14095.
DescriptionDescription of problem:
SELinux is preventing geoclue from 'search' accesses on the directory 14095.

***** Plugin catchall (100. confidence) suggests **************************

If you believe that geoclue should be allowed search access on the 14095 directory by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# ausearch -c 'geoclue' --raw | audit2allow -M my-geoclue
# semodule -i my-geoclue.pp

Additional Information:
Source Context system_u:system_r:geoclue_t:s0
Target Context system_u:system_r:unconfined_service_t:s0
Target Objects 14095 [ dir ]
Source geoclue
Source Path geoclue
Port <Unknown>
Host (removed)
Source RPM Packages geoclue2-2.4.5-1.el7.x86_64
Target RPM Packages
Policy RPM selinux-policy-3.13.1-166.el7_4.4.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name (removed)
Platform Linux (removed) 3.10.0-693.2.2.el7.x86_64 #1 SMP
                              Tue Sep 12 22:26:13 UTC 2017 x86_64 x86_64
Alert Count 9
First Seen 2017-09-19 17:42:32 +08
Last Seen 2017-09-21 10:11:29 +08
Local ID 46b3d1c7-5fba-4c7c-a347-755d958efeba

Raw Audit Messages
type=AVC msg=audit(1505959889.755:204): avc: denied { search } for pid=14178 comm="geoclue" name="14095" dev="proc" ino=42774 scontext=system_u:system_r:geoclue_t:s0 tcontext=system_u:system_r:unconfined_service_t:s0 tclass=dir


type=SYSCALL msg=audit(1505959889.755:204): arch=x86_64 syscall=open success=no exit=EACCES a0=ac1710 a1=0 a2=0 a3=0 items=0 ppid=1 pid=14178 auid=4294967295 uid=993 gid=991 euid=993 suid=993 fsuid=993 egid=991 sgid=991 fsgid=991 tty=(none) ses=4294967295 comm=geoclue exe=/usr/libexec/geoclue subj=system_u:system_r:geoclue_t:s0 key=(null)

Hash: geoclue,geoclue_t,unconfined_service_t,dir,search

Version-Release number of selected component:
selinux-policy-3.13.1-166.el7_4.4.noarch
Additional Informationreporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-693.2.2.el7.x86_64
reproducible: Not sure how to reproduce the problem
type: libreport
TagsNo tags attached.
abrt_hashe6e000d78b4f6c965d3bcba8bfe9dad63e7d2a18331d79abcce54f2f9b74be08
URL

Activities

sylweksylwina

sylweksylwina

2017-10-02 20:53

reporter   ~0030283

Another user experienced a similar problem:

Error appeared after upgrade to newest build

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-693.2.2.el7.x86_64
package: selinux-policy-3.13.1-166.el7_4.4.noarch
reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2461.
reproducible: Not sure how to reproduce the problem
type: libreport
amtradm

amtradm

2017-10-17 03:54

reporter   ~0030381

Another user experienced a similar problem:

This alert appeared after upgrading VNC viewer

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-693.2.2.el7.x86_64
package: selinux-policy-3.13.1-166.el7_4.4.noarch
reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2695.
reproducible: Not sure how to reproduce the problem
type: libreport
dk_means

dk_means

2017-12-13 01:49

reporter   ~0030745

The directory involved is in the /proc tree, and has the same number as the process ID for my gnome-shell. This seems to happen every time I create a new Gnome session.

Here is the SELinux report from my system. The "first seen" date is just after a ginormous YUM update. This might identify the package, but it is not going to pinpoint who the offender was: centos-release.x86_64 7-4.1708.el7.centos
---------------------------------------------
Source Context system_u:system_r:geoclue_t:s0
Target Context system_u:system_r:unconfined_service_t:s0
Target Objects 2339 [ dir ]
Source geoclue
Source Path geoclue
Port <Unknown>
Host archie.digitalelephant.org
Source RPM Packages geoclue2-2.4.5-1.el7.x86_64
Target RPM Packages
Policy RPM selinux-policy-3.13.1-166.el7_4.7.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name archie.digitalelephant.org
Platform Linux archie.digitalelephant.org
                              3.10.0-693.11.1.el7.x86_64 #1 SMP Mon Dec 4
                              23:52:40 UTC 2017 x86_64 x86_64
Alert Count 43
First Seen 2017-09-14 08:15:27 PDT
Last Seen 2017-12-12 17:32:43 PST
Local ID b87960e7-2a55-4c9b-b6ce-184ee27e978a
justinsymdistro

justinsymdistro

2018-04-06 03:30

reporter   ~0031568

Another user experienced a similar problem:

Error at boot?

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-693.21.1.el7.x86_64
package: selinux-policy-3.13.1-166.el7_4.9.noarch
reason: SELinux is preventing geoclue from 'search' accesses on the directory 2284.
reproducible: Not sure how to reproduce the problem
type: libreport
thericster

thericster

2018-06-27 03:15

reporter   ~0032138

Another user experienced a similar problem:

Appeared on reboot after updates installed.

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-862.3.3.el7.x86_64
package: selinux-policy-3.13.1-192.el7_5.3.noarch
reason: SELinux is preventing geoclue from 'search' accesses on the directory 5516.
reproducible: Not sure how to reproduce the problem
type: libreport
amir385276

amir385276

2018-11-12 14:59

reporter   ~0033100

Another user experienced a similar problem:

SELinux

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-862.14.4.el7.x86_64
package: selinux-policy-3.13.1-192.el7_5.6.noarch
reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 7423.
reproducible: Not sure how to reproduce the problem
type: libreport
zypherion

zypherion

2019-01-30 01:00

reporter   ~0033728

Another user experienced a similar problem:

Clean install on ESXI 6.0.

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-957.el7.x86_64
package: selinux-policy-3.13.1-229.el7_6.6.noarch
reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 24698.
reproducible: Not sure how to reproduce the problem
type: libreport
cjm1224

cjm1224

2019-03-21 13:57

reporter   ~0034060

Another user experienced a similar problem:

Playing movie

reporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-957.5.1.el7.x86_64
package: selinux-policy-3.13.1-229.el7_6.9.noarch
reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 14219.
reproducible: Not sure how to reproduce the problem
type: libreport

Issue History

Date Modified Username Field Change
2017-09-21 02:28 iloken New Issue
2017-10-02 20:53 sylweksylwina Note Added: 0030283
2017-10-17 03:54 amtradm Note Added: 0030381
2017-12-13 01:49 dk_means Note Added: 0030745
2018-04-06 03:30 justinsymdistro Note Added: 0031568
2018-06-27 03:15 thericster Note Added: 0032138
2018-11-12 14:59 amir385276 Note Added: 0033100
2019-01-30 01:00 zypherion Note Added: 0033728
2019-03-21 13:57 cjm1224 Note Added: 0034060