Bug 1554000
| Summary: | SELinux is preventing (coredump) from 'remount' accesses on the système de fichiers . | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Nicolas Mailhot <nicolas.mailhot> |
| Component: | selinux-policy | Assignee: | Lukas Vrabec <lvrabec> |
| Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | rawhide | CC: | dwalsh, lvrabec, mgrepl, plautrba, pmoore |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Unspecified | ||
| Whiteboard: | abrt_hash:2d71b641915fd5c7ba3d4a37651334da545244573efd45916b287a7ffed007bd;VARIANT_ID=workstation; | ||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2018-03-10 18:38:09 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
Hi, Please run: # restorecon -Rv / To fix your issue. |
Description of problem: SELinux is preventing (coredump) from 'remount' accesses on the système de fichiers . ***** Plugin catchall (100. confidence) suggests ************************** Si vous pensez que (coredump) devrait être autorisé à accéder remount sur filesystem par défaut. Then vous devriez rapporter ceci en tant qu'anomalie. Vous pouvez générer un module de stratégie local pour autoriser cet accès. Do autoriser cet accès pour le moment en exécutant : # ausearch -c "(coredump)" --raw | audit2allow -M my-coredump # semodule -X 300 -i my-coredump.pp Additional Information: Source Context system_u:system_r:init_t:s0 Target Context system_u:object_r:unlabeled_t:s0 Target Objects [ filesystem ] Source (coredump) Source Path (coredump) Port <Inconnu> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.14.2-4.fc29.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Permissive Host Name (removed) Platform Linux (removed) 4.16.0-0.rc4.git2.1.fc29.x86_64 #1 SMP Thu Mar 8 14:51:49 UTC 2018 x86_64 x86_64 Alert Count 60 First Seen 2018-03-06 22:23:45 CET Last Seen 2018-03-10 17:26:57 CET Local ID b63fe567-a6b8-47a8-970d-326835ca27e3 Raw Audit Messages type=AVC msg=audit(1520699217.163:491): avc: denied { remount } for pid=20117 comm="(fprintd)" scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 Hash: (coredump),init_t,unlabeled_t,filesystem,remount Version-Release number of selected component: selinux-policy-3.14.2-4.fc29.noarch Additional info: component: selinux-policy reporter: libreport-2.9.3 hashmarkername: setroubleshoot kernel: 4.16.0-0.rc4.git2.1.fc29.x86_64 type: libreport