2017-12-15 06:26 UTC

View Issue Details Jump to Notes ]
IDProjectCategoryView StatusLast Update
0014249CentOS-7selinux-policypublic2017-12-07 14:58
Reporterwritex 
PrioritynormalSeverityminorReproducibilityhave not tried
StatusnewResolutionopen 
PlatformOSOS Version7
Product Version 
Target VersionFixed in Version 
Summary0014249: SELinux is preventing /usr/bin/perl from unix_read, unix_write access on the semaphore Unknown.
DescriptionDescription of problem:
SELinux is preventing /usr/bin/perl from unix_read, unix_write access on the semaphore Unknown.

***** Plugin catchall (100. confidence) suggests **************************

If вы считаете, что perl следует разрешить доступ unix_read unix_write к Unknown sem по умолчанию.
Then рекомендуется создать отчет об ошибке.
Чтобы разрешить доступ, можно создать локальный модуль политики.
Do
allow this access for now by executing:
# ausearch -c 'mysql_innodb_bp' --raw | audit2allow -M my-mysqlinnodbbp
# semodule -i my-mysqlinnodbbp.pp

Additional Information:
Source Context system_u:system_r:services_munin_plugin_t:s0
Target Context unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1
                              023
Target Objects Unknown [ sem ]
Source mysql_innodb_bp
Source Path /usr/bin/perl
Port <Unknown>
Host (removed)
Source RPM Packages perl-5.16.3-292.el7.x86_64
Target RPM Packages
Policy RPM selinux-policy-3.13.1-166.el7_4.5.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name (removed)
Platform Linux (removed) 3.10.0-693.5.2.el7.x86_64 #1 SMP
                              Fri Oct 20 20:32:50 UTC 2017 x86_64 x86_64
Alert Count 93909
First Seen 2017-11-27 08:23:07 MSK
Last Seen 2017-12-04 10:25:16 MSK
Local ID 1ff2c754-7a18-4d5f-827b-ed27e8106666

Raw Audit Messages
type=AVC msg=audit(1512372316.751:138510): avc: denied { unix_read unix_write } for pid=19450 comm="mysql_qcache_me" key=1667461225 scontext=system_u:system_r:services_munin_plugin_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=sem


type=SYSCALL msg=audit(1512372316.751:138510): arch=x86_64 syscall=semget success=no exit=EACCES a0=63637069 a1=3 a2=3b6 a3=7ffe8cbc81d0 items=0 ppid=18501 pid=19450 auid=4294967295 uid=99 gid=99 euid=99 suid=99 fsuid=99 egid=99 sgid=99 fsgid=99 tty=(none) ses=4294967295 comm=mysql_qcache_me exe=/usr/bin/perl subj=system_u:system_r:services_munin_plugin_t:s0 key=(null)

Hash: mysql_innodb_bp,services_munin_plugin_t,unconfined_t,sem,unix_read,unix_write

Version-Release number of selected component:
selinux-policy-3.13.1-166.el7_4.5.noarch
Additional Informationreporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-693.11.1.el7.x86_64
reproducible: Not sure how to reproduce the problem
type: libreport
TagsNo tags attached.
abrt_hash6aa1a95b62b501b44e4323c3d870014fb0b3c3b38a30b231e44b14c1808c87ec
URL
Attached Files

-Relationships
+Relationships

-Notes
There are no notes attached to this issue.
+Notes

-Issue History
Date Modified Username Field Change
2017-12-07 14:58 writex New Issue
+Issue History