Bug 1770402

Summary: avahi has incorrect permissions on /var/run/avahi-daemon
Product: Red Hat Enterprise Linux 7 Reporter: Ryan Mullett <rmullett>
Component: avahiAssignee: Michal Sekletar <msekleta>
Status: CLOSED WONTFIX QA Contact: qe-baseos-daemons
Severity: high Docs Contact:
Priority: unspecified    
Version: 7.8CC: kwalker
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-11-11 21:47:19 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1801675    

Description Ryan Mullett 2019-11-08 22:14:45 UTC 
Description of problem:
When running an rpm -Va, the /var/run/avahi-daemon/ directory shows as a failure.

When users in secure environments run security scans this is considered a finding during the security audits. 

Version-Release number of selected component (if applicable):
0.6.31

How reproducible:
Always

Steps to Reproduce:
1. # yum install avahi
2. # systemctl start avahi-daemon
3. # rpm -V avahi

Actual results:
.....UG..  g /var/run/avahi-daemon

Expected results:
There should be no output regarding incorrect permissions on /var/run/avahi-daemon.

Additional info:
The issue here specifically, is that the file is owned by avahi at runtime, but according to the spec file it should be owned by root. This is considered a finding when running openscap scans.
Comment 4 Chris Williams 2020-11-11 21:47:19 UTC 
Red Hat Enterprise Linux 7 shipped it's final minor release on September 29th, 2020. 7.9 was the last minor releases scheduled for RHEL 7.
From intial triage it does not appear the remaining Bugzillas meet the inclusion criteria for Maintenance Phase 2 and will now be closed. 

From the RHEL life cycle page:
https://access.redhat.com/support/policy/updates/errata#Maintenance_Support_2_Phase
"During Maintenance Support 2 Phase for Red Hat Enterprise Linux version 7,Red Hat defined Critical and Important impact Security Advisories (RHSAs) and selected (at Red Hat discretion) Urgent Priority Bug Fix Advisories (RHBAs) may be released as they become available."

If this BZ was closed in error and meets the above criteria please re-open it flag for 7.9.z, provide suitable business and technical justifications, and follow the process for Accelerated Fixes:
https://source.redhat.com/groups/public/pnt-cxno/pnt_customer_experience_and_operations_wiki/support_delivery_accelerated_fix_release_handbook  

Feature Requests can re-opened and moved to RHEL 8 if the desired functionality is not already present in the product. 

Please reach out to the applicable Product Experience Engineer[0] if you have any questions or concerns.  

[0] https://bugzilla.redhat.com/page.cgi?id=agile_component_mapping.html&product=Red+Hat+Enterprise+Linux+7