View Issue Details

IDProjectCategoryView StatusLast Update
0017895CentOS-7selinux-policypublic2020-11-28 09:26
ReporterKEI Tachibana Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status newResolutionopen 
OS Version7 
Summary0017895: SELinux is preventing /usr/bin/reporter-ureport from 'add_name' accesses on the ディレクトリー dbTemp.y5dXkg.
DescriptionDescription of problem:
SELinux is preventing /usr/bin/reporter-ureport from 'add_name' accesses on the ディレクトリー dbTemp.y5dXkg.

***** Plugin catchall (100. confidence) suggests **************************

reporter-ureport に、 dbTemp.y5dXkg directory の add_name アクセスがデフォルトで許可されるべきと考える場合。
Then バグとして報告してください。
# ausearch -c 'reporter-urepor' --raw | audit2allow -M my-reporterurepor
# semodule -i my-reporterurepor.pp

Additional Information:
Source Context system_u:system_r:abrt_t:s0-s0:c0.c1023
Target Context system_u:object_r:cert_t:s0
Target Objects dbTemp.y5dXkg [ dir ]
Source reporter-urepor
Source Path /usr/bin/reporter-ureport
Port <Unknown>
Host (removed)
Source RPM Packages
Target RPM Packages
Policy RPM selinux-policy-3.13.1-268.el7_9.2.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name (removed)
Platform Linux (removed) 3.10.0-1160.6.1.el7.x86_64 #1 SMP
                              Tue Nov 17 13:59:11 UTC 2020 x86_64 x86_64
Alert Count 2
First Seen 2020-11-28 15:27:44 JST
Last Seen 2020-11-28 15:27:44 JST
Local ID 1293a7e4-4cfa-4064-bbd3-4dc921ab05ee

Raw Audit Messages
type=AVC msg=audit(1606544864.422:207): avc: denied { add_name } for pid=6259 comm="reporter-urepor" name="dbTemp.y5dXkg" scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:cert_t:s0 tclass=dir permissive=0

Hash: reporter-urepor,abrt_t,cert_t,dir,add_name

Version-Release number of selected component:
Additional Informationreporter: libreport-
hashmarkername: setroubleshoot
kernel: 3.10.0-1160.6.1.el7.x86_64
reproducible: Not sure how to reproduce the problem
type: libreport
TagsNo tags attached.




2020-11-28 09:26

manager   ~0038006

I suggest to attempt a full relabel of the filesystem. And please, try to use English letters were possible, most of us do not have the proper support for Asian fonts. Thank you

Issue History

Date Modified Username Field Change
2020-11-28 07:25 KEI Tachibana New Issue
2020-11-28 09:26 ManuelWolfshant Note Added: 0038006