View Issue Details

IDProjectCategoryView StatusLast Update
0017895CentOS-7selinux-policypublic2020-11-28 09:26
ReporterKEI Tachibana 
PrioritynormalSeverityminorReproducibilityhave not tried
Status newResolutionopen 
PlatformOSOS Version7
Product Version 
Target VersionFixed in Version 
Summary0017895: SELinux is preventing /usr/bin/reporter-ureport from 'add_name' accesses on the ディレクトリー dbTemp.y5dXkg.
DescriptionDescription of problem:
SELinux is preventing /usr/bin/reporter-ureport from 'add_name' accesses on the ディレクトリー dbTemp.y5dXkg.

***** Plugin catchall (100. confidence) suggests **************************

reporter-ureport に、 dbTemp.y5dXkg directory の add_name アクセスがデフォルトで許可されるべきと考える場合。
Then バグとして報告してください。
ローカルのポリシーモジュールを生成すると、
 このアクセスを許可することができます。
Do
以下のコマンドを実行して、このアクセスを許可します:
# ausearch -c 'reporter-urepor' --raw | audit2allow -M my-reporterurepor
# semodule -i my-reporterurepor.pp

Additional Information:
Source Context system_u:system_r:abrt_t:s0-s0:c0.c1023
Target Context system_u:object_r:cert_t:s0
Target Objects dbTemp.y5dXkg [ dir ]
Source reporter-urepor
Source Path /usr/bin/reporter-ureport
Port <Unknown>
Host (removed)
Source RPM Packages
Target RPM Packages
Policy RPM selinux-policy-3.13.1-268.el7_9.2.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name (removed)
Platform Linux (removed) 3.10.0-1160.6.1.el7.x86_64 #1 SMP
                              Tue Nov 17 13:59:11 UTC 2020 x86_64 x86_64
Alert Count 2
First Seen 2020-11-28 15:27:44 JST
Last Seen 2020-11-28 15:27:44 JST
Local ID 1293a7e4-4cfa-4064-bbd3-4dc921ab05ee

Raw Audit Messages
type=AVC msg=audit(1606544864.422:207): avc: denied { add_name } for pid=6259 comm="reporter-urepor" name="dbTemp.y5dXkg" scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:cert_t:s0 tclass=dir permissive=0


Hash: reporter-urepor,abrt_t,cert_t,dir,add_name

Version-Release number of selected component:
selinux-policy-3.13.1-268.el7_9.2.noarch
Additional Informationreporter: libreport-2.1.11.1
hashmarkername: setroubleshoot
kernel: 3.10.0-1160.6.1.el7.x86_64
reproducible: Not sure how to reproduce the problem
type: libreport
TagsNo tags attached.
abrt_hashef61d6e222af62a3ed711ca20e76631303dc943400c57361a5797a09e516fda7
URL

Activities

ManuelWolfshant

ManuelWolfshant

2020-11-28 09:26

manager   ~0038006

I suggest to attempt a full relabel of the filesystem. And please, try to use English letters were possible, most of us do not have the proper support for Asian fonts. Thank you

Issue History

Date Modified Username Field Change
2020-11-28 07:25 KEI Tachibana New Issue
2020-11-28 09:26 ManuelWolfshant Note Added: 0038006