Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Normal
Fix Version/s: 4.2.0rc2
Affects Version/s: Unspecified
Component/s: None
Labels:
None

Blocked:
False
Ready:
False
Release Note Text:
Undefined
Git Pull Request:
https://github.com/ansible/galaxy-importer/pull/94, https://github.com/ansible/galaxy-importer/pull/96
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

While importing collection into Automation Hub, there is a number of AVC (ie. SELinux exceptions) that are being raised because of the way ansible-doc is used/called

time->Mon Oct 26 10:37:44 2020
 type=PROCTITLE msg=audit(1603708664.982:754): proctitle=2F7573722F62696E2F707974686F6E32002F7573722F62696E2F616E7369626C652D646F63002D2D74797065006D6F64756C65002D2D6A736F6E006E65777377616E676572642E636F6C6C656374696F6E5F64656D6F2E7265616C5F6661637473
 type=SYSCALL msg=audit(1603708664.982:754): arch=c000003e syscall=83 success=yes exit=0 a0=142ecd0 a1=1c0 a2=7f63ebc7f1c8 a3=7ffcc91ac9e0 items=0 ppid=20227 pid=20233 auid=4294967295 uid=1001 gid=1001 euid=1001 suid=1001 fsuid=1001 egid=1001 sgid=1001 fsgid=1001 tty=(none) ses=4294967295 comm="ansible-doc" exe="/usr/bin/python2.7" subj=system_u:system_r:pulpcore_t:s0 key=(null)
 type=AVC msg=audit(1603708664.982:754): avc: denied { create } for pid=20233 comm="ansible-doc" name="ansible-local-20233jx5Vk9" scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
 type=AVC msg=audit(1603708664.982:754): avc: denied { add_name } for pid=20233 comm="ansible-doc" name="ansible-local-20233jx5Vk9" scontext=system_u:system_r:pulpcore_t:s0 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=dir permissive=1
 type=AVC msg=audit(1603708664.982:754): avc: denied { write } for pid=20233 comm="ansible-doc" name="tmp" dev="nvme0n1p2" ino=8595617 scontext=system_u:system_r:pulpcore_t:s0 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=dir permissive=1
time->Mon Oct 26 10:37:45 2020
 type=PROCTITLE msg=audit(1603708665.128:755): proctitle=2F7573722F62696E2F707974686F6E32002F7573722F62696E2F616E7369626C652D646F63002D2D74797065006D6F64756C65002D2D6A736F6E006E65777377616E676572642E636F6C6C656374696F6E5F64656D6F2E7265616C5F6661637473
 type=SYSCALL msg=audit(1603708665.128:755): arch=c000003e syscall=84 success=yes exit=0 a0=178b960 a1=0 a2=1 a3=6269736e612f706d items=0 ppid=20227 pid=20233 auid=4294967295 uid=1001 gid=1001 euid=1001 suid=1001 fsuid=1001 egid=1001 sgid=1001 fsgid=1001 tty=(none) ses=4294967295 comm="ansible-doc" exe="/usr/bin/python2.7" subj=system_u:system_r:pulpcore_t:s0 key=(null)
 type=AVC msg=audit(1603708665.128:755): avc: denied { rmdir } for pid=20233 comm="ansible-doc" name="ansible-local-20233jx5Vk9" dev="nvme0n1p2" ino=383811 scontext=system_u:system_r:pulpcore_t:s0 tcontext=system_u:object_r:var_lib_t:s0 tclass=dir permissive=1
 type=AVC msg=audit(1603708665.128:755): avc: denied { remove_name } for pid=20233 comm="ansible-doc" name="ansible-local-20233jx5Vk9" dev="nvme0n1p2" ino=383811 scontext=system_u:system_r:pulpcore_t:s0 tcontext=unconfined_u:object_r:var_lib_t:s0 tclass=dir permissive=1

Assignee:: Clara Spealman (Inactive)

Reporter:: Yanis Guenane

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2020/10/26 6:51 AM

Updated:: 2022/09/21 9:23 PM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates