-
Bug
-
Resolution: Cannot Reproduce
-
Major
-
None
-
None
-
No
-
Moderate
-
rhel-security-selinux
-
1
-
False
-
False
-
-
None
-
None
-
Pass
-
None
-
Unspecified
-
Unspecified
-
Unspecified
-
None
This bug happens with selinux-policy-41.38-1.fc43:
type=PROCTITLE msg=audit(04/23/2025 21:20:33.151:124) : proctitle=/usr/bin/python3 /usr/lib/python3.12/site-packages/insights_client/run.py
type=PATH msg=audit(04/23/2025 21:20:33.151:124) : item=1 name=private-keys-v1.d inode=100960614 dev=fd:00 mode=dir,700 ouid=root ogid=root rdev=00:00 obj=system_u:object_r:insights_client_var_lib_t:s0 nametype=DELETE cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0
type=PATH msg=audit(04/23/2025 21:20:33.151:124) : item=0 name=/ inode=67562379 dev=fd:00 mode=dir,700 ouid=root ogid=root rdev=00:00 obj=system_u:object_r:insights_client_var_lib_t:s0 nametype=PARENT cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0
type=CWD msg=audit(04/23/2025 21:20:33.151:124) : cwd=/
type=SYSCALL msg=audit(04/23/2025 21:20:33.151:124) : arch=x86_64 syscall=unlinkat success=no exit=EACCES(Permission denied) a0=0x6 a1=0x7fdc6c32f5d0 a2=0x200 a3=0x0 items=2 ppid=1497 pid=1559 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=python3 exe=/usr/bin/python3.12 subj=system_u:system_r:insights_core_t:s0 key=(null)
type=AVC msg=audit(04/23/2025 21:20:33.151:124) : avc: denied { rmdir } for pid=1559 comm=python3 name=private-keys-v1.d dev=“dm-0" ino=100960614 scontext=system_u:system_r:insights_core_t:s0 tcontext=system_u:object_r:insights_client_var_lib_t:s0 tclass=dir permissive=0
#============= insights_core_t ==============
- src=“insights_core_t” tgt=“insights_client_var_lib_t” class=“dir”, perms=“rmdir”
- comm=“ython” exe=“” path=“”
allow insights_core_t insights_client_var_lib_t:dir rmdir;