 |
Another user experienced a similar problem: Error appeared after upgrade to newest build reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.2.2.el7.x86_64 package: selinux-policy-3.13.1-166.el7_4.4.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2461. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: This alert appeared after upgrading VNC viewer reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.2.2.el7.x86_64 package: selinux-policy-3.13.1-166.el7_4.4.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2695. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
The directory involved is in the /proc tree, and has the same number as the process ID for my gnome-shell. This seems to happen every time I create a new Gnome session. Here is the SELinux report from my system. The "first seen" date is just after a ginormous YUM update. This might identify the package, but it is not going to pinpoint who the offender was: centos-release.x86_64 7-4.1708.el7.centos --------------------------------------------- Source Context system_u:system_r:geoclue_t:s0 Target Context system_u:system_r:unconfined_service_t:s0 Target Objects 2339 [ dir ] Source geoclue Source Path geoclue Port <Unknown> Host archie.digitalelephant.org Source RPM Packages geoclue2-2.4.5-1.el7.x86_64 Target RPM Packages Policy RPM selinux-policy-3.13.1-166.el7_4.7.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name archie.digitalelephant.org Platform Linux archie.digitalelephant.org 3.10.0-693.11.1.el7.x86_64 #1 SMP Mon Dec 4 23:52:40 UTC 2017 x86_64 x86_64 Alert Count 43 First Seen 2017-09-14 08:15:27 PDT Last Seen 2017-12-12 17:32:43 PST Local ID b87960e7-2a55-4c9b-b6ce-184ee27e978a |
|
|
Another user experienced a similar problem: Error at boot? reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.21.1.el7.x86_64 package: selinux-policy-3.13.1-166.el7_4.9.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 2284. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Appeared on reboot after updates installed. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-862.3.3.el7.x86_64 package: selinux-policy-3.13.1-192.el7_5.3.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 5516. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: SELinux reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-862.14.4.el7.x86_64 package: selinux-policy-3.13.1-192.el7_5.6.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 7423. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Clean install on ESXI 6.0. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.6.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 24698. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Playing movie reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.5.1.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.9.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 14219. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Do a system update reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-862.14.4.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2535. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: This is based on the standard CentOS 7 install with the Server with GUI. I wasn't doing anything inparticular with the system at the time. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.12.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 6726. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: It happens at boot reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.12.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 12576. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Fresh install, installed XFCE4, Gnome, XRDP, first time logged in with xrdp and got this error. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.21.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 18784. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: This was reported by CentOS 7 notification reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.5.1.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.9.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 12126. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Au boot reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.21.3.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the dossier 6201. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: I do a lot of rsync of data from an old server. I har been running for several days. Today I had no network connection with it. It is placed in the basement (technical room) without any monitor or keyboard. I tried to press the power button short for controlled shutdown, but no responce. Then I had to press and hold to get a forced stop/power off. After booting up and open VNC to the console for checking power setting I saw the new icon on the top. Then when clicking on it I got the information for the failure. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.27.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.15.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 7049. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: After update of OS reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1062.4.1.el7.x86_64 package: selinux-policy-3.13.1-252.el7.1.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 20054. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: Celan installation Server with GUI (gnome classic) SELinux is preventing geoclue from search access on the directory 14824. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that geoclue should be allowed search access on the 14824 directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'geoclue' --raw | audit2allow -M my-geoclue # semodule -i my-geoclue.pp Additional Information: Source Context system_u:system_r:geoclue_t:s0 Target Context system_u:system_r:unconfined_service_t:s0 Target Objects 14824 [ dir ] Source geoclue Source Path geoclue Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-252.el7.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux cos7g-srv1.it4use24.eu 3.10.0-1062.el7.x86_64 #1 SMP Wed Aug 7 18:08:02 UTC 2019 x86_64 x86_64 Alert Count 2 First Seen 2020-01-21 20:55:27 CET Last Seen 2020-01-21 20:58:18 CET Local ID 5c5b737e-0dc1-4087-aa62-66da27ee6d4d Raw Audit Messages type=AVC msg=audit(1579636698.826:446): avc: denied { search } for pid=14897 comm="geoclue" name="14824" dev="proc" ino=77509 scontext=system_u:system_r:geoclue_t:s0 tcontext=system_u:system_r:unconfined_service_t:s0 tclass=dir permissive=0 Hash: geoclue,geoclue_t,unconfined_service_t,dir,search reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1062.el7.x86_64 package: selinux-policy-3.13.1-252.el7.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 14824. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: I am not sure, but it seems to corrolate with logging into the CentOS system. In this SELinux report, the directory 81813 that is denied access is either /proc/81813 or /proc/81813/task/81813 81813 is the PID for my /usr/bin/gnome-shell process. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1062.18.1.el7.x86_64 package: selinux-policy-3.13.1-252.el7_7.6.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 81813. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: First install of CentOS reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1127.18.2.el7.x86_64 package: selinux-policy-3.13.1-266.el7_8.1.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2924. reproducible: Not sure how to reproduce the problem type: libreport |
|
|
Another user experienced a similar problem: You should report this as a bug. You can generate a local policy module to allow this access. Allow this access for now by executing: # ausearch -c 'geoclue' --raw | audit2allow -M my-geoclue # semodule -i my-geoclue.pp reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1160.71.1.el7.x86_64 package: selinux-policy-3.13.1-268.el7_9.2.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 8265. reproducible: Not sure how to reproduce the problem type: libreport |
- Anonymous
