in follow up to Redhat case#00618469. application functions only when SELINUX is set to permissive. we tried the following: 1. turned on httpd_unified boolean 2. built custom module and now cat audit.log |allow2audit -alR does not show any messages. But, still application works only in permissive mode. No, selinux error in the either messages or audit.log file but application works in permissive mode ony. Kernel has booted in audit=1 mode. please look at case#00618469 for more details.
Could you try to test it with # semodule -DB which will turn off dontaudit rules.
i_ajay_1999 Who are you working this with from Red Hat, I would like to add them to the bugzilla.
Simon Sek. was the redhat engineer working this case...thx-ajay
doing "semodule -DB" and running the job in enrocing mode (it failed) and in permissive mode (was successful) did not create any logs either in /var/log/messages or in audit.log.
Is auditd running?
Yes
Does it still persist?
I am going to close this bug. If the problem still persists, please reopen the bug. Thank you.