Bug 2078073
| Summary: | SELinux is preventing gdb from 'read' accesses on the Datei f608f40699df11a4f08066742c239d574011c351.qmlc. | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | aannoaanno |
| Component: | selinux-policy | Assignee: | Zdenek Pytela <zpytela> |
| Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 36 | CC: | dwalsh, grepl.miroslav, lvrabec, mmalik, omosnace, pkoncity, vmojzis, zpytela |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Unspecified | ||
| Whiteboard: | abrt_hash:1283961ae5a91206a7d88d60cc2c3c2d06f5beb332cae24844173a3cbddf105b;VARIANT_ID=workstation; | ||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2022-04-25 07:31:20 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
*** This bug has been marked as a duplicate of bug 1902602 *** |
Description of problem: SELinux is preventing gdb from 'read' accesses on the Datei f608f40699df11a4f08066742c239d574011c351.qmlc. ***** Plugin catchall (100. confidence) suggests ************************** Wenn Sie denken, dass es gdb standardmäßig erlaubt sein sollte, read Zugriff auf f608f40699df11a4f08066742c239d574011c351.qmlc file zu erhalten. Then sie sollten dies als Fehler melden. Um diesen Zugriff zu erlauben, können Sie ein lokales Richtlinien-Modul erstellen. Do zugriff jetzt erlauben, indem Sie die nachfolgenden Befehle ausführen: # ausearch -c 'gdb' --raw | audit2allow -M my-gdb # semodule -X 300 -i my-gdb.pp Additional Information: Source Context system_u:system_r:abrt_t:s0-s0:c0.c1023 Target Context system_u:object_r:xdm_var_lib_t:s0 Target Objects f608f40699df11a4f08066742c239d574011c351.qmlc [ file ] Source gdb Source Path gdb Port <Unbekannt> Host (removed) Source RPM Packages Target RPM Packages SELinux Policy RPM selinux-policy-targeted-36.6-1.fc36.noarch Local Policy RPM selinux-policy-targeted-36.6-1.fc36.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 5.16.20-200.fc35.x86_64 #1 SMP PREEMPT Wed Apr 13 22:09:20 UTC 2022 x86_64 x86_64 Alert Count 94 First Seen 2022-04-22 16:38:35 CEST Last Seen 2022-04-23 09:58:35 CEST Local ID 9836bad3-d2bf-46af-b261-2cec0edce22c Raw Audit Messages type=AVC msg=audit(1650700715.41:419): avc: denied { read } for pid=5107 comm="gdb" name="f608f40699df11a4f08066742c239d574011c351.qmlc" dev="dm-1" ino=2200713 scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:xdm_var_lib_t:s0 tclass=file permissive=0 Hash: gdb,abrt_t,xdm_var_lib_t,file,read Version-Release number of selected component: selinux-policy-targeted-36.6-1.fc36.noarch Additional info: component: selinux-policy reporter: libreport-2.17.1 hashmarkername: setroubleshoot kernel: 5.16.20-200.fc35.x86_64 type: libreport Potential duplicate: bug 1902602