Bug 2166633
| Summary: | rpmdb-migrate.service crashes after selinux AVC | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Zbigniew Jędrzejewski-Szmek <zbyszek> |
| Component: | selinux-policy | Assignee: | Zdenek Pytela <zpytela> |
| Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | rawhide | CC: | dwalsh, lvrabec, mmalik, omosnacek, pkoncity, vmojzis, zpytela |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2023-02-03 13:45:52 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
I forgot to write that there's no coredump captured. I think this is a dup of bz#2164752, a new F37 build should be available today. *** This bug has been marked as a duplicate of bug 2164752 *** |
Description of problem: On a freshly updated rawhide machine: Reached target sockets.target - Socket Units. Starting rpmdb-migrate.service - RPM database migration to /usr... AVC avc: denied { map } for pid=670 comm="rpmdb_migrate" path="/usr/bin/bash" dev="vda2" ino=124799 scontext=system_u:system_r:rpmdb_t:s0 tcontext=system_u:object_r:shell_exec_t:s0 tclass=file permissive=0 ANOM_ABEND auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:rpmdb_t:s0 pid=670 comm="rpmdb_migrate" exe="/usr/bin/bash" sig=11 res=1 rpmdb-rebuild.service - RPM database rebuild was skipped because of an unmet condition check (ConditionPathExists=/usr/lib/sysimage/rpm/.rebuilddb). systemd-pcrphase-sysinit.service - TPM2 PCR Barrier (Initialization) was skipped because of an unmet condition check (ConditionPathExists=/sys/firmware/efi/efivars/StubPcrKernelImage-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f). rpmdb-migrate.service: Main process exited, code=killed, status=11/SEGV rpmdb-migrate.service: Failed with result 'signal'. Failed to start rpmdb-migrate.service - RPM database migration to /usr. Version-Release number of selected component (if applicable): rpm-4.18.0-10.fc38.x86_64 selinux-policy-38.6-1.fc38.noarch How reproducible: Deterministic. I happens every time I start rpmdb-migrate.service. Steps to Reproduce: 1. Just boot or call 'systemctl start rpmdb-migrate'.