Hide Forgot
Description of problem: Seems that new map permissions added in -193 denies pkla-check-auth porcess. Version-Release number of selected component (if applicable): kernel-3.10.0-878.el7 selinux-policy-targeted-3.13.1-193.el7 selinux-policy-3.13.1-193.el7 How reproducible: 100% Steps to Reproduce: 1. 2. 3. Actual results: May 03 08:06:58 placka kernel: type=1400 audit(1525327618.612:123): avc: denied { map } for pid=2503 comm="pkla-check-auth" path="/usr/bin/pkla-check-authorization" dev="dm-4" ino=100666321 scontext=system_u:system_r:policykit_t:s0 tcontext=system_u:object_r:policykit_auth_exec_t:s0 tclass=file permissive=0 Expected results: Additional info: Wokaround: either setenforce 0 or downgrading to selinux-policy-targeted-3.13.1-192.el7_5.3.noarch selinux-policy-3.13.1-192.el7_5.3 Full list of map related AVC's attached at https://bugzilla.redhat.com/attachment.cgi?id=1430552
I can still see this issue with -201 version of selinux-policy.
*** This bug has been marked as a duplicate of bug 1583082 ***