1275406 – SE-Linux rule error "preventing systemd-logind from read access on the file OsIndicationsSupported-"

Bug 1275406 - SE-Linux rule error "preventing systemd-logind from read access on the file OsIndicationsSupported-"

Summary: SE-Linux rule error "preventing systemd-logind from read access on the file O...

Keywords:
Status:	CLOSED INSUFFICIENT_DATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	selinux-policy
Sub Component:
Version:	23
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Lukas Vrabec
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2015-10-26 20:04 UTC by Andreas Balg
Modified:	2016-10-10 18:12 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-10-10 18:12:46 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Andreas Balg 2015-10-26 20:04:05 UTC

SeLinux Error after Out-of-the Box installation:
Effects are currently unclear to me:

kt 25 19:46:40 localhost.localdomain setroubleshoot[2252]: SELinux is preventing systemd-logind from read access on the file OsIndicationsSupported-8be4df61-93ca-11d2-aa0d-00e098032b8c. For complete SEL
Okt 25 19:46:40 localhost.localdomain python3[2252]: SELinux is preventing systemd-logind from read access on the file OsIndicationsSupported-8be4df61-93ca-11d2-aa0d-00e098032b8c.
                                                     
                                                     *****  Plugin catchall (100. confidence) suggests   **************************
                                                     
                                                     If you believe that systemd-logind should be allowed read access on the OsIndicationsSupported-8be4df61-93ca-11d2-aa0d-00e098032b8c file by default.
                                                     Then you should report this as a bug.
                                                     You can generate a local policy module to allow this access.
                                                     Do
                                                     allow this access for now by executing:
                                                     # grep systemd-logind /var/log/audit/audit.log | audit2allow -M mypol
                                                     # semodule -i mypol.pp

Comment 1 Daniel Walsh 2015-10-27 15:23:07 UTC

Could you include the AVC messages

ausearch -m avc -ts recent

Comment 2 Andreas Balg 2015-11-09 18:24:09 UTC

Sorry - I can't give the necessary information anymore - the respective system has been deleted and reinstalled meanwhile.

Comment 3 Andreas Balg 2016-10-10 15:58:44 UTC

As stated before:

Sorry - I can't give the necessary information anymore - the respective system has been deleted and reinstalled meanwhile.


Please stop bugging me to provide outstandig info's

Note You need to log in before you can comment on or make changes to this bug.