Bug 891913

Summary:	rtas_errd runs as initrc_t
Product:	Red Hat Enterprise Linux 7	Reporter:	Milos Malik <mmalik>
Component:	selinux-policy	Assignee:	Lukas Vrabec <lvrabec>
Status:	CLOSED CURRENTRELEASE	QA Contact:	Milos Malik <mmalik>
Severity:	medium	Docs Contact:
Priority:	medium
Version:	7.0	CC:	mgrepl
Target Milestone:	rc
Target Release:	---
Hardware:	ppc64
OS:	Linux
Whiteboard:
Fixed In Version:	selinux-policy-3.12.1-91.el7	Doc Type:	Bug Fix
Doc Text:		Story Points:	---
Clone Of:		Environment:
Last Closed:	2014-06-13 10:35:06 UTC	Type:	Bug
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:
Bug Depends On:	877026
Bug Blocks:	848829, 1040965

Description Milos Malik 2013-01-04 12:43:23 UTC

Description of problem:

Version-Release number of selected component (if applicable):
selinux-policy-3.11.1-62.el7.noarch
selinux-policy-targeted-3.11.1-62.el7.noarch
ppc64-diag-2.4.3-6.el7.ppc64

How reproducible:
always

Steps to Reproduce:
# service rtas_errd restart
Redirecting to /bin/systemctl restart  rtas_errd.service
# service rtas_errd status
Redirecting to /bin/systemctl status  rtas_errd.service
rtas_errd.service - ppc64-diag rtas_errd (platform error handling) Service
	  Loaded: loaded (/usr/lib/systemd/system/rtas_errd.service; enabled)
	  Active: active (running) since Fri, 2013-01-04 07:41:10 EST; 3s ago
	 Process: 10346 ExecStop=/usr/libexec/ppc64-diag/rtas_errd stop (code=exited, status=0/SUCCESS)
	 Process: 10351 ExecStart=/usr/libexec/ppc64-diag/rtas_errd start (code=exited, status=0/SUCCESS)
	Main PID: 10354 (rtas_errd)
	  CGroup: name=systemd:/system/rtas_errd.service
		  └ 10354 /usr/sbin/rtas_errd

# ps -efZ | grep rtas_errd
system_u:system_r:initrc_t:s0   root     10354     1  0 07:41 ?        00:00:00 /usr/sbin/rtas_errd
unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 root 10366 6644  0 07:41 pts/0 00:00:00 grep --color=auto rtas_errd
#

Actual results:
 * rtas_errd runs as initrc_t

Expected results:
 * rtas_errd runs in its own SELinux domain

Comment 3 Ludek Smid 2014-06-13 10:35:06 UTC

This request was resolved in Red Hat Enterprise Linux 7.0.

Contact your manager or support representative in case you have further questions about the request.