View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0013878 | CentOS-7 | selinux-policy | public | 2017-09-21 02:28 | 2022-08-12 07:44 |
Reporter | iloken | Assigned To | |||
Priority | normal | Severity | minor | Reproducibility | have not tried |
Status | new | Resolution | open | ||
OS Version | 7 | ||||
Summary | 0013878: SELinux is preventing geoclue from 'search' accesses on the directory 14095. | ||||
Description | Description of problem: SELinux is preventing geoclue from 'search' accesses on the directory 14095. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that geoclue should be allowed search access on the 14095 directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'geoclue' --raw | audit2allow -M my-geoclue # semodule -i my-geoclue.pp Additional Information: Source Context system_u:system_r:geoclue_t:s0 Target Context system_u:system_r:unconfined_service_t:s0 Target Objects 14095 [ dir ] Source geoclue Source Path geoclue Port <Unknown> Host (removed) Source RPM Packages geoclue2-2.4.5-1.el7.x86_64 Target RPM Packages Policy RPM selinux-policy-3.13.1-166.el7_4.4.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 3.10.0-693.2.2.el7.x86_64 #1 SMP Tue Sep 12 22:26:13 UTC 2017 x86_64 x86_64 Alert Count 9 First Seen 2017-09-19 17:42:32 +08 Last Seen 2017-09-21 10:11:29 +08 Local ID 46b3d1c7-5fba-4c7c-a347-755d958efeba Raw Audit Messages type=AVC msg=audit(1505959889.755:204): avc: denied { search } for pid=14178 comm="geoclue" name="14095" dev="proc" ino=42774 scontext=system_u:system_r:geoclue_t:s0 tcontext=system_u:system_r:unconfined_service_t:s0 tclass=dir type=SYSCALL msg=audit(1505959889.755:204): arch=x86_64 syscall=open success=no exit=EACCES a0=ac1710 a1=0 a2=0 a3=0 items=0 ppid=1 pid=14178 auid=4294967295 uid=993 gid=991 euid=993 suid=993 fsuid=993 egid=991 sgid=991 fsgid=991 tty=(none) ses=4294967295 comm=geoclue exe=/usr/libexec/geoclue subj=system_u:system_r:geoclue_t:s0 key=(null) Hash: geoclue,geoclue_t,unconfined_service_t,dir,search Version-Release number of selected component: selinux-policy-3.13.1-166.el7_4.4.noarch | ||||
Additional Information | reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.2.2.el7.x86_64 reproducible: Not sure how to reproduce the problem type: libreport | ||||
Tags | No tags attached. | ||||
abrt_hash | e6e000d78b4f6c965d3bcba8bfe9dad63e7d2a18331d79abcce54f2f9b74be08 | ||||
URL | |||||
Another user experienced a similar problem: Error appeared after upgrade to newest build reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.2.2.el7.x86_64 package: selinux-policy-3.13.1-166.el7_4.4.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2461. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: This alert appeared after upgrading VNC viewer reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.2.2.el7.x86_64 package: selinux-policy-3.13.1-166.el7_4.4.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2695. reproducible: Not sure how to reproduce the problem type: libreport |
|
The directory involved is in the /proc tree, and has the same number as the process ID for my gnome-shell. This seems to happen every time I create a new Gnome session. Here is the SELinux report from my system. The "first seen" date is just after a ginormous YUM update. This might identify the package, but it is not going to pinpoint who the offender was: centos-release.x86_64 7-4.1708.el7.centos --------------------------------------------- Source Context system_u:system_r:geoclue_t:s0 Target Context system_u:system_r:unconfined_service_t:s0 Target Objects 2339 [ dir ] Source geoclue Source Path geoclue Port <Unknown> Host archie.digitalelephant.org Source RPM Packages geoclue2-2.4.5-1.el7.x86_64 Target RPM Packages Policy RPM selinux-policy-3.13.1-166.el7_4.7.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name archie.digitalelephant.org Platform Linux archie.digitalelephant.org 3.10.0-693.11.1.el7.x86_64 #1 SMP Mon Dec 4 23:52:40 UTC 2017 x86_64 x86_64 Alert Count 43 First Seen 2017-09-14 08:15:27 PDT Last Seen 2017-12-12 17:32:43 PST Local ID b87960e7-2a55-4c9b-b6ce-184ee27e978a |
|
Another user experienced a similar problem: Error at boot? reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-693.21.1.el7.x86_64 package: selinux-policy-3.13.1-166.el7_4.9.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 2284. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Appeared on reboot after updates installed. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-862.3.3.el7.x86_64 package: selinux-policy-3.13.1-192.el7_5.3.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 5516. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: SELinux reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-862.14.4.el7.x86_64 package: selinux-policy-3.13.1-192.el7_5.6.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 7423. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Clean install on ESXI 6.0. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.6.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 24698. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Playing movie reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.5.1.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.9.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 14219. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Do a system update reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-862.14.4.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2535. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: This is based on the standard CentOS 7 install with the Server with GUI. I wasn't doing anything inparticular with the system at the time. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.12.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 6726. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: It happens at boot reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.12.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 12576. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Fresh install, installed XFCE4, Gnome, XRDP, first time logged in with xrdp and got this error. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.21.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 18784. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: This was reported by CentOS 7 notification reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.5.1.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.9.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 12126. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Au boot reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.21.3.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.12.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the dossier 6201. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: I do a lot of rsync of data from an old server. I har been running for several days. Today I had no network connection with it. It is placed in the basement (technical room) without any monitor or keyboard. I tried to press the power button short for controlled shutdown, but no responce. Then I had to press and hold to get a forced stop/power off. After booting up and open VNC to the console for checking power setting I saw the new icon on the top. Then when clicking on it I got the information for the failure. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-957.27.2.el7.x86_64 package: selinux-policy-3.13.1-229.el7_6.15.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 7049. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: After update of OS reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1062.4.1.el7.x86_64 package: selinux-policy-3.13.1-252.el7.1.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 20054. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: Celan installation Server with GUI (gnome classic) SELinux is preventing geoclue from search access on the directory 14824. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that geoclue should be allowed search access on the 14824 directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'geoclue' --raw | audit2allow -M my-geoclue # semodule -i my-geoclue.pp Additional Information: Source Context system_u:system_r:geoclue_t:s0 Target Context system_u:system_r:unconfined_service_t:s0 Target Objects 14824 [ dir ] Source geoclue Source Path geoclue Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-252.el7.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux cos7g-srv1.it4use24.eu 3.10.0-1062.el7.x86_64 #1 SMP Wed Aug 7 18:08:02 UTC 2019 x86_64 x86_64 Alert Count 2 First Seen 2020-01-21 20:55:27 CET Last Seen 2020-01-21 20:58:18 CET Local ID 5c5b737e-0dc1-4087-aa62-66da27ee6d4d Raw Audit Messages type=AVC msg=audit(1579636698.826:446): avc: denied { search } for pid=14897 comm="geoclue" name="14824" dev="proc" ino=77509 scontext=system_u:system_r:geoclue_t:s0 tcontext=system_u:system_r:unconfined_service_t:s0 tclass=dir permissive=0 Hash: geoclue,geoclue_t,unconfined_service_t,dir,search reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1062.el7.x86_64 package: selinux-policy-3.13.1-252.el7.noarch reason: SELinux is preventing geoclue from 'search' accesses on the directory 14824. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: I am not sure, but it seems to corrolate with logging into the CentOS system. In this SELinux report, the directory 81813 that is denied access is either /proc/81813 or /proc/81813/task/81813 81813 is the PID for my /usr/bin/gnome-shell process. reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1062.18.1.el7.x86_64 package: selinux-policy-3.13.1-252.el7_7.6.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 81813. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: First install of CentOS reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1127.18.2.el7.x86_64 package: selinux-policy-3.13.1-266.el7_8.1.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 2924. reproducible: Not sure how to reproduce the problem type: libreport |
|
Another user experienced a similar problem: You should report this as a bug. You can generate a local policy module to allow this access. Allow this access for now by executing: # ausearch -c 'geoclue' --raw | audit2allow -M my-geoclue # semodule -i my-geoclue.pp reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1160.71.1.el7.x86_64 package: selinux-policy-3.13.1-268.el7_9.2.noarch reason: SELinux is preventing /usr/libexec/geoclue from 'search' accesses on the directory 8265. reproducible: Not sure how to reproduce the problem type: libreport |
|
Date Modified | Username | Field | Change |
---|---|---|---|
2017-09-21 02:28 | iloken | New Issue | |
2017-10-02 20:53 | sylweksylwina | Note Added: 0030283 | |
2017-10-17 03:54 | amtradm | Note Added: 0030381 | |
2017-12-13 01:49 | dk_means | Note Added: 0030745 | |
2018-04-06 03:30 | justinsymdistro | Note Added: 0031568 | |
2018-06-27 03:15 | thericster | Note Added: 0032138 | |
2018-11-12 14:59 | amir385276 | Note Added: 0033100 | |
2019-01-30 01:00 | zypherion | Note Added: 0033728 | |
2019-03-21 13:57 | cjm1224 | Note Added: 0034060 | |
2019-05-22 15:35 | zleroy5@gmail.com | Note Added: 0034494 | |
2019-05-25 20:45 | amarand | Note Added: 0034523 | |
2019-06-05 05:08 | Elliott | Note Added: 0034600 | |
2019-06-12 21:25 | EyesofThunder | Note Added: 0034648 | |
2019-06-30 05:47 | pkranjan | Note Added: 0034753 | |
2019-07-22 10:59 | AZURCAM | Note Added: 0034862 | |
2019-09-07 09:09 | Amatoren | Note Added: 0035082 | |
2019-11-08 15:28 | sthompson | Note Added: 0035661 | |
2020-01-21 19:08 | cos_mrusin1971 | Note Added: 0036086 | |
2020-03-27 14:31 | rwood@forcepoint.com | Note Added: 0036594 | |
2020-07-31 23:12 | designbo | Note Added: 0037466 | |
2022-08-12 07:44 | plumcodes | Note Added: 0038968 |