View Issue Details

IDProjectCategoryView StatusLast Update
0017060CentOS-8selinux-policypublic2020-06-02 05:10
Reportermmarusak 
PrioritynormalSeverityminorReproducibilityalways
Status newResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary0017060: SELinux is preventing NetworkManager from write access
DescriptionWith the latest update of centos-8-stream image in Cockpit team we noticed that SELinux has a new AVC:

audit: type=1400 audit(1581925780.527:4): avc: denied { write } for pid=8686 comm="NetworkManager" path="/var/tmp/dracut.HrkoJL/systemd-cat" dev="dm-0" ino=8721101 scontext=system_u:system_r:NetworkManager_t:s0 tcontext=system_u:object_r:kdumpctl_tmp_t:s0 tclass=fifo_file permissive=0
Additional Information$ rpm -q selinux-policy
selinux-policy-3.14.3-20.el8.noarch
TagsNo tags attached.

Activities

Martin.Pitt

Martin.Pitt

2020-06-02 05:10

reporter   ~0037017

We [haven't seen this any more](https://github.com/cockpit-project/bots/issues/539) in almost a month now, so most recent CentOS 8 has this fixed. Please close.

Issue History

Date Modified Username Field Change
2020-02-17 12:45 mmarusak New Issue
2020-06-02 05:10 Martin.Pitt Note Added: 0037017