Bug 1933905 - denied { watch } for pid=1143 comm="gmain" path="/var/lib/flatpak/exports/share/applications"
Summary: denied { watch } for pid=1143 comm="gmain" path="/var/lib/flatpak/exports/s...
Keywords:
Status: CLOSED DUPLICATE of bug 1947214
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy
Version: 34
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Zdenek Pytela
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-03-02 01:23 UTC by Chris Murphy
Modified: 2021-04-14 19:09 UTC (History)
8 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-04-14 19:09:53 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Chris Murphy 2021-03-02 01:23:04 UTC 
Description of problem:

Mar 01 18:15:20 fmac.local audit[1143]: AVC avc:  denied  { watch } for  pid=1143 comm="gmain" path="/var/lib/flatpak/exports/share/applications" dev="sda6" ino=893077 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=0



Version-Release number of selected component (if applicable):

selinux-policy-3.14.7-23.fc34.noarch


How reproducible:
Always


Steps to Reproduce:
1. Boot
2.
3.

Actual results:

> 400 identical denials


Expected results:

I don't know but not so many messages?


Additional info:

This denial is interleaved with another denial, so they might be related. If so, this is a dup of bug 1928563.


Mar 01 18:21:00 fmac.local audit[1143]: AVC avc:  denied  { watch } for  pid=1143 comm="gmain" path="/var/lib/AccountsService/icons" dev="sda6" ino=150610 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=system_u:object_r:accountsd_var_lib_t:s0 tclass=dir permissive=0
Comment 1 Zdenek Pytela 2021-04-14 19:09:53 UTC 

*** This bug has been marked as a duplicate of bug 1947214 ***
Note You need to log in before you can comment on or make changes to this bug.