Hide Forgot
Description of problem: mdadm not allowed to search /sys/firmware/efi/efivars/. Version-Release number of selected component (if applicable): mdadm-3.3.2-7.el7.x86_64 selinux-policy-targeted-3.13.1-60.el7_2.3.noarch How reproducible: In my case, I have a RAID 1 volume with Intel RST, managed by mdadm. When I do "fdisk /dev/md126" and then hit "w" to save changes, even if I did not change anything, I get an Audit alert that mdadm is denied to access /sys/firmware/efi/efivars/. Was not able to check if it is reproducible with other types of RAID arrays created with mdadm or anything. Here is the output of audit2allow: [root@pc ~]# audit2allow -a #============= mdadm_t ============== allow mdadm_t efivarfs_t:dir search; Steps to Reproduce: 1. Check the previous section. Actual results: Selinux denies access to mdadm to something that appears to be required. Expected results: mdadm is able to access all the hardware and other information it needs. Additional info: I am not able to detect what functional issues are caused by this behavior, I only noticed the audit notification.
This is an selinux-policy problem rather than mdadm - reassigning to the correct package. Jes
Milos is right. *** This bug has been marked as a duplicate of bug 1291801 ***
Guys, I don't seem to be able to access that bug. What is its status please?