Bug 471218
Summary: | tanukiwrapper generates execmod AVC denial | |||
---|---|---|---|---|
Product: | [Community] Spacewalk | Reporter: | Jan Pazdziora <jpazdziora> | |
Component: | Server | Assignee: | Jan Pazdziora <jpazdziora> | |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Red Hat Satellite QA List <satqe-list> | |
Severity: | medium | Docs Contact: | ||
Priority: | medium | |||
Version: | 0.3 | CC: | msuchy | |
Target Milestone: | --- | |||
Target Release: | --- | |||
Hardware: | All | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 480189 (view as bug list) | Environment: | ||
Last Closed: | 2009-01-22 16:30:30 UTC | Type: | --- | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 456552 |
Description
Jan Pazdziora
2008-11-12 14:27:58 UTC
Jesus says: jmrodri adelton, one thing that is different is the makefile patches for tanukiwrapper jmrodri adelton, 3.2.1 has this for the compile jmrodri $(COMPILE) -pthread $(wrapper_SOURCE) -o $(BIN)/wrapper -lm jmrodri while 3.1.2 has this jmrodri $(COMPILE) -lm $(wrapper_SOURCE) -o $(BIN)/wrapper jmrodri diff is -pthread 3.1.2 rpm also patch the %.o: %.c section of the Makefile.linux 3.1.2 orig $(COMPILE) $(DEFS) -Wp,-MD,.deps/$(*F).pp -c $< 3.1.2 patch $(COMPILE) $(DEFS) -fPIC -Wp,-MD,.deps/$(*F).pp -c $< 3.2.1 orig $(COMPILE) $(DEFS) -Wp,-MD,.deps/$(*F).pp -c $< I'm not sure if -fPIC makes a difference here or not. adelton jmrodri: It's the pthread which seems to be the difference. adelton jmrodri: Yes, at least if my vi and /fPIC do not lie. jmrodri adelton, the odd part is the 3.1.2 has 2 fPIC one for libwrapper.so: $(libwrapper_so_OBJECTS) jmrodri adn another one in %.o: %.c jmrodri while the 3.2.1 only has it in libwrapper.so: $(libwrapper_so_OBJECTS) adelton jmrodri: Nod. But I do not see it in the build.log. jmrodri adelton, agreed I don't see it in build.log either. It looks like Dennis built / imported # rpm -q tanukiwrapper tanukiwrapper-3.1.2-4jpp_3rhn.2.el5 on 2008-11-09 to koji which fixes the problem as well: # eu-findtextrel /usr/lib/libwrapper.so eu-findtextrel: no text relocations reported in '/usr/lib/libwrapper.so' Moving to MODIFIED, taking this bugzilla for possible kickbacks. # rpm -q tanukiwrapper tanukiwrapper-3.1.2-4jpp_3rhn.2.el5 And I do not see the given message in audit.log |