Bug 1826788 - Audit daemon does not halt the system when the audit partition is full
Summary: Audit daemon does not halt the system when the audit partition is full
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: selinux-policy
Version: 8.2
Hardware: x86_64
OS: Linux
medium
medium
Target Milestone: rc
: 8.3
Assignee: Zdenek Pytela
QA Contact: Milos Malik
Mirek Jahoda
URL:
Whiteboard:
Depends On: 1780332
Blocks:
TreeView+ depends on / blocked
 
Reported: 2020-04-22 14:50 UTC by Zdenek Pytela
Modified: 2020-11-04 21:36 UTC (History)
10 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
.SELinux no longer prevents `auditd` to halt or power off the system Previously, the SELinux policy did not contain a rule that allows the Audit daemon to start a `power_unit_file_t` `systemd` unit. Consequently, `auditd` could not halt or power off the system even when configured to do so in cases such as no space left on a logging disk partition. This update of the `selinux-policy` packages adds the missing rule, and `auditd` can now properly halt and power off the system only with SELinux in enforcing mode.
Clone Of: 1780332
Environment:
Last Closed: 2020-11-04 01:56:35 UTC
Type: Bug
Target Upstream Version:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2020:4528 0 None None None 2020-11-04 01:57:11 UTC

Comment 13 errata-xmlrpc 2020-11-04 01:56:35 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (selinux-policy bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:4528
Note You need to log in before you can comment on or make changes to this bug.