Bug 2247987
| Summary: | SELinux is preventing dotlockfile from 'link' accesses on the file .lk1300424dave. | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Davide Repetto <red> | ||||||
| Component: | selinux-policy | Assignee: | Zdenek Pytela <zpytela> | ||||||
| Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||
| Severity: | unspecified | Docs Contact: | |||||||
| Priority: | unspecified | ||||||||
| Version: | 39 | CC: | dwalsh, lvrabec, mmalik, nknazeko, omosnacek, pkoncity, red, vmojzis, zpytela | ||||||
| Target Milestone: | --- | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | x86_64 | ||||||||
| OS: | Unspecified | ||||||||
| Whiteboard: | abrt_hash:da6a3f29c3a775f57ac7f82201127ce8ce52d0cdfa4a5fa7b998733293f16441;VARIANT_ID=matecompiz; | ||||||||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2023-11-06 09:09:19 UTC | Type: | --- | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Attachments: |
|
||||||||
Created attachment 1997217 [details]
File: description
Created attachment 1997218 [details]
File: os_info
*** This bug has been marked as a duplicate of bug 2247977 *** |
Description of problem: SELinux is preventing dotlockfile from 'link' accesses on the file .lk1300424dave. ***** Plugin catchall (100. confidence) suggests ************************** Se ci credi dotlockfile dovrebbe essere consentito link accesso al .lk1300424dave file per impostazione predefinita. Then si dovrebbe riportare il problema come bug. E' possibile generare un modulo di politica locale per consentire questo accesso. Do consentire questo accesso per ora eseguendo: # ausearch -c 'dotlockfile' --raw | audit2allow -M my-$MODULE_NOME # semodule -X 300 -i miei-dotlockfile.pp Additional Information: Source Context system_u:system_r:system_mail_t:s0 Target Context system_u:object_r:ddclient_var_t:s0 Target Objects .lk1300424dave [ file ] Source dotlockfile Source Path dotlockfile Port <Sconosciuto> Host (removed) Source RPM Packages Target RPM Packages SELinux Policy RPM selinux-policy-targeted-38.29-1.fc39.noarch Local Policy RPM selinux-policy-targeted-38.29-1.fc39.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Permissive Host Name (removed) Platform Linux (removed) 6.5.9-300.fc39.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Oct 25 21:39:20 UTC 2023 x86_64 Alert Count 9 First Seen 2023-11-04 20:24:41 CET Last Seen 2023-11-05 09:59:32 CET Local ID 055304bd-53b7-4ec9-9ccb-d157431f00c1 Raw Audit Messages type=AVC msg=audit(1699174772.678:1417): avc: denied { link } for pid=130042 comm="dotlockfile" name=".lk1300424dave" dev="sde4" ino=18739734 scontext=system_u:system_r:system_mail_t:s0 tcontext=system_u:object_r:ddclient_var_t:s0 tclass=file permissive=1 Hash: dotlockfile,system_mail_t,ddclient_var_t,file,link Version-Release number of selected component: selinux-policy-targeted-38.29-1.fc39.noarch Additional info: reporter: libreport-2.17.11 reason: SELinux is preventing dotlockfile from 'link' accesses on the file .lk1300424dave. package: selinux-policy-targeted-38.29-1.fc39.noarch component: selinux-policy hashmarkername: setroubleshoot type: libreport kernel: 6.5.9-300.fc39.x86_64 component: selinux-policy