View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0018265 | CentOS-7 | selinux-policy | public | 2021-08-01 22:34 | 2021-08-01 22:34 |
Reporter | JeepNut | Assigned To | |||
Priority | normal | Severity | minor | Reproducibility | have not tried |
Status | new | Resolution | open | ||
OS Version | 7 | ||||
Summary | 0018265: SELinux is preventing gdm-session-wor from 'create' accesses on the directory gdm. | ||||
Description | Description of problem: SELinux is preventing gdm-session-wor from 'create' accesses on the directory gdm. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that gdm-session-wor should be allowed create access on the gdm directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'gdm-session-wor' --raw | audit2allow -M my-gdmsessionwor # semodule -i my-gdmsessionwor.pp Additional Information: Source Context system_u:system_r:xdm_t:s0-s0:c0.c1023 Target Context system_u:object_r:home_root_t:s0 Target Objects gdm [ dir ] Source gdm-session-wor Source Path gdm-session-wor Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-268.el7_9.2.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 3.10.0-1160.36.2.el7.x86_64 #1 SMP Wed Jul 21 11:57:15 UTC 2021 x86_64 x86_64 Alert Count 1 First Seen 2021-08-01 18:10:27 EDT Last Seen 2021-08-01 18:10:27 EDT Local ID ac57fd69-59cd-4eda-8e71-3d54d34f11b3 Raw Audit Messages type=AVC msg=audit(1627855827.249:181): avc: denied { create } for pid=9682 comm="gdm-session-wor" name="gdm" scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=system_u:object_r:home_root_t:s0 tclass=dir permissive=0 Hash: gdm-session-wor,xdm_t,home_root_t,dir,create Version-Release number of selected component: selinux-policy-3.13.1-268.el7_9.2.noarch | ||||
Additional Information | reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 3.10.0-1160.36.2.el7.x86_64 reproducible: Not sure how to reproduce the problem type: libreport | ||||
Tags | No tags attached. | ||||
abrt_hash | ded74e6508d1c131c1b36fcc995adb23f9b3e9d65730a74304020b10cffc0b1e | ||||
URL | |||||
Date Modified | Username | Field | Change |
---|---|---|---|
2021-08-01 22:34 | JeepNut | New Issue |