Bug 1127584
| Summary: | AVC denial for prelink | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | Jiri Koten <jkoten> | ||||
| Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> | ||||
| Status: | CLOSED DUPLICATE | QA Contact: | BaseOS QE Security Team <qe-baseos-security> | ||||
| Severity: | medium | Docs Contact: | |||||
| Priority: | medium | ||||||
| Version: | 6.6 | CC: | dwalsh, mmalik | ||||
| Target Milestone: | rc | ||||||
| Target Release: | --- | ||||||
| Hardware: | All | ||||||
| OS: | Linux | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2014-08-07 12:21:32 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Attachments: |
|
||||||
This is a duplicate of BZ#1103674. *** This bug has been marked as a duplicate of bug 1103674 *** |
Created attachment 924781 [details] system log Description of problem: After update to selinux-policy-3.7.19-248.el6 I see a lot of AVC msgs in message log and dmesg output related to prelink. Version-Release number of selected component (if applicable): selinux-policy-3.7.19-248.el6 [snip] Aug 6 16:54:22 dhcp131-158 kernel: type=1400 audit(1407336862.943:103): avc: denied { relabelto } for pid=9174 comm="prelink" name="undo.#prelink#.FFpujH" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 16:54:22 dhcp131-158 kernel: type=1400 audit(1407336862.949:104): avc: denied { unlink } for pid=9174 comm="prelink" name="undo.#prelink#.FFpujH" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 16:55:01 dhcp131-158 kernel: type=1400 audit(1407336901.095:105): avc: denied { relabelto } for pid=9201 comm="prelink" name="undo.#prelink#.66wr6r" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0-s0:c0.c1023 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 16:55:01 dhcp131-158 kernel: type=1400 audit(1407336901.100:106): avc: denied { unlink } for pid=9201 comm="prelink" name="undo.#prelink#.66wr6r" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0-s0:c0.c1023 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 16:55:23 dhcp131-158 kernel: type=1400 audit(1407336923.033:107): avc: denied { relabelto } for pid=9224 comm="prelink" name="undo.#prelink#.cQ5uHn" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 16:55:23 dhcp131-158 kernel: type=1400 audit(1407336923.040:108): avc: denied { unlink } for pid=9224 comm="prelink" name="undo.#prelink#.cQ5uHn" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 17:01:01 dhcp131-158 kernel: type=1400 audit(1407337261.387:109): avc: denied { relabelto } for pid=9295 comm="prelink" name="undo.#prelink#.akzUAf" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0-s0:c0.c1023 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 17:01:01 dhcp131-158 kernel: type=1400 audit(1407337261.394:110): avc: denied { unlink } for pid=9295 comm="prelink" name="undo.#prelink#.akzUAf" dev=dm-2 ino=1067866 scontext=system_u:system_r:prelink_mask_t:s0-s0:c0.c1023 tcontext=system_u:object_r:lib_t:s0 tclass=file Aug 6 17:02:30 dhcp131-158 kernel: type=1400 audit(1407337350.531:111): avc: denied { relabelto } for pid=9358 comm="prelink" name="undo.#prelink#.yP13aw" dev=dm-2 ino=1067893 scontext=system_u:system_r:prelink_mask_t:s0 tcontext=system_u:object_r:lib_t:s0 tclass=file