Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 1483422 Details for
Bug 1629341
selinux policy prevents running logrotate from a systemd timer
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
Full set of AVCs in permissive mode
avcs (text/plain), 6.25 KB, created by
Jason Tibbitts
on 2018-09-15 01:47:56 UTC
(
hide
)
Description:
Full set of AVCs in permissive mode
Filename:
MIME Type:
Creator:
Jason Tibbitts
Created:
2018-09-15 01:47:56 UTC
Size:
6.25 KB
patch
obsolete
>time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.174:21291): avc: denied { read open } for pid=7161 comm="(ogrotate)" path="/usr/sbin/logrotate" dev="dm-0" ino=2302422 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_exec_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.174:21290): avc: denied { execute } for pid=7161 comm="(ogrotate)" name="logrotate" dev="dm-0" ino=2302422 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_exec_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.174:21292): avc: denied { execute_no_trans } for pid=7161 comm="(ogrotate)" path="/usr/sbin/logrotate" dev="dm-0" ino=2302422 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_exec_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.175:21293): avc: denied { map } for pid=7161 comm="logrotate" path="/usr/sbin/logrotate" dev="dm-0" ino=2302422 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_exec_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.181:21294): avc: denied { read } for pid=7161 comm="logrotate" name="chrony" dev="dm-0" ino=6670387 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:chronyd_var_log_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.182:21295): avc: denied { read } for pid=7161 comm="logrotate" name="cups" dev="dm-0" ino=6931482 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:cupsd_log_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.182:21296): avc: denied { getattr } for pid=7161 comm="logrotate" path="/var/log/cups/access_log" dev="dm-0" ino=6931485 scontext=system_u:system_r:init_t:s0 tcontext=unconfined_u:object_r:cupsd_log_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.184:21297): avc: denied { getattr } for pid=7161 comm="logrotate" path="/var/log/fail2ban.log" dev="dm-0" ino=697347 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:fail2ban_log_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.185:21298): avc: denied { read } for pid=7161 comm="logrotate" name="samba" dev="dm-0" ino=615698 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:samba_log_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.186:21299): avc: denied { read } for pid=7161 comm="logrotate" name="sssd" dev="dm-0" ino=2644701 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:sssd_var_log_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.186:21300): avc: denied { getattr } for pid=7161 comm="logrotate" path="/var/log/sssd/krb5_child.log" dev="dm-0" ino=2733355 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:sssd_var_log_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.187:21301): avc: denied { getattr } for pid=7161 comm="logrotate" path="/var/lib/logrotate/logrotate.status" dev="dm-0" ino=8422380 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.187:21302): avc: denied { read } for pid=7161 comm="logrotate" name="logrotate.status" dev="dm-0" ino=8422380 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.187:21303): avc: denied { open } for pid=7161 comm="logrotate" path="/var/lib/logrotate/logrotate.status" dev="dm-0" ino=8422380 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.196:21304): avc: denied { write } for pid=7161 comm="logrotate" name="logrotate" dev="dm-0" ino=8425631 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.196:21305): avc: denied { add_name } for pid=7161 comm="logrotate" name="logrotate.status.tmp" scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.196:21306): avc: denied { create } for pid=7161 comm="logrotate" name="logrotate.status.tmp" scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.196:21307): avc: denied { write } for pid=7161 comm="logrotate" path="/var/lib/logrotate/logrotate.status.tmp" dev="dm-0" ino=8425568 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.196:21308): avc: denied { setattr } for pid=7161 comm="logrotate" name="logrotate.status.tmp" dev="dm-0" ino=8425568 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.222:21309): avc: denied { remove_name } for pid=7161 comm="logrotate" name="logrotate.status.tmp" dev="dm-0" ino=8425568 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=dir permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.222:21310): avc: denied { rename } for pid=7161 comm="logrotate" name="logrotate.status.tmp" dev="dm-0" ino=8425568 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1 >---- >time->Fri Sep 14 19:32:02 2018 >type=AVC msg=audit(1536971522.222:21311): avc: denied { unlink } for pid=7161 comm="logrotate" name="logrotate.status" dev="dm-0" ino=8422380 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:logrotate_var_lib_t:s0 tclass=file permissive=1
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1483422">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 1629341
: 1483422