Bug 183306
| Summary: | audit2allow loses some rules | ||||||
|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Miloslav Trmač <mitr> | ||||
| Component: | policycoreutils | Assignee: | Daniel Walsh <dwalsh> | ||||
| Status: | CLOSED RAWHIDE | QA Contact: | Ben Levenson <benl> | ||||
| Severity: | medium | Docs Contact: | |||||
| Priority: | medium | ||||||
| Version: | 5 | CC: | dwalsh, pgraner | ||||
| Target Milestone: | --- | ||||||
| Target Release: | --- | ||||||
| Hardware: | All | ||||||
| OS: | Linux | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | 1.29.26-5 | Doc Type: | Bug Fix | ||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2006-03-07 14:04:29 UTC | Type: | --- | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Attachments: |
|
||||||
Created attachment 125374 [details]
source audit log
Fixed in policycoreutils-1.29.26-5 THanks for the bug report. Confirmed, thanks! |
Description of problem: (audit2allow -M talkd -i log) generates: module talkd 1.0; require { role object_r; role system_r; class chr_file { getattr write }; class file { lock read }; type inetd_child_t; type initrc_var_run_t; type tty_device_t; }; allow inetd_child_t initrc_var_run_t:file lock; allow inetd_child_t tty_device_t:chr_file write; Notice that it requires chr_file:getattr and file:read, but it doesn't use them in the "allow" rules as it should. Version-Release number of selected component (if applicable): policycoreutils-1.29.26-2