Bug 1263148
| Summary: | [7.1-3.5.4] avc denied errors (dev="tmpfs") in audit.log | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Red Hat Enterprise Virtualization Manager | Reporter: | cshao <cshao> | ||||
| Component: | ovirt-node | Assignee: | Fabian Deutsch <fdeutsch> | ||||
| Status: | CLOSED ERRATA | QA Contact: | cshao <cshao> | ||||
| Severity: | medium | Docs Contact: | |||||
| Priority: | high | ||||||
| Version: | 3.5.4 | CC: | cwu, gklein, huiwa, huzhao, leiwang, lsurette, mgoldboi, yaniwang, ycui, ykaul | ||||
| Target Milestone: | ovirt-3.6.0-rc3 | Keywords: | ZStream | ||||
| Target Release: | 3.6.0 | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | ovirt-node-3.2.3-23 rhev-hypervisor7-7.1-20150917.0 rhev-hypervisor6-6.7-20150917.0 | Doc Type: | Bug Fix | ||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | |||||||
| : | 1266095 (view as bug list) | Environment: | |||||
| Last Closed: | 2016-03-09 14:38:05 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | Node | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | |||||||
| Bug Blocks: | 1266095 | ||||||
| Attachments: |
|
||||||
Test version: rhev-hypervisor7-7.2-20151025.0.el7ev ovirt-node-3.3.0-0.18.20151022git82dc52c.el7ev.noarch selinux-policy-3.13.1-60.el7.noarch Test steps: 1.RHEV-H installed successful. selinux in enforcing mode as default. 2.Login to rhevh, 3. Run command: # grep "avc: denied" /var/log/audit/audit.log Test result: No avc denied errors in audit.log. So the bug is fixed, change bug status to VERIFIED. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2016-0378.html |
Created attachment 1073536 [details] avc7.tar.gz Description of problem: After RHEVH installed,there are AVC denied errors (dev="tmpfs") in audit.log. Version: rhev-hypervisor7-7.1-20150911.0.el6ev ovirt-node-3.2.3-20.el7.noarch selinux-policy-3.13.1-23.el7_1.17.noarch How reproducible: 100% Steps to Reproduce: 1.RHEV-H installed successful. selinux in enforcing mode as default. 2.Login to rhevh, # grep "avc: denied" /var/log/audit/audit.log type=AVC msg=audit(1442218987.816:265): avc: denied { unlink } for pid=17150 comm="rm" name="ntp.conf.predhclient.em1" dev="tmpfs" ino=52480 scontext=unconfined_u:system_r:dhcpc_t:s0-s0:c0.c1023 tcontext=system_u:object_r:tmpfs_t:s0 tclass=file Actual results: AVC msgs in audit.log Expected results: No avc denied errors in audit.log. Additional info: