Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-17892

policycoreutils-restorecond sets incorrect SELinux context for D-Bus daemons

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Normal Normal
    • rhel-9.4
    • rhel-9.1.0.z
    • policycoreutils
    • None
    • None
    • None
    • rhel-sst-security-selinux
    • ssg_security
    • None
    • QE ack
    • False
    • Hide

      None

      Show
      None
    • None
    • Red Hat Enterprise Linux
    • None
    • Hide

      Even if the '/bin/*' line is present in the /etc/selinux/restorecond.conf file, the restorecond service does not mislabel files in the /usr/bin/ directory during its start.

      Show
      Even if the '/bin/*' line is present in the /etc/selinux/restorecond.conf file, the restorecond service does not mislabel files in the /usr/bin/ directory during its start.
    • None
    • Automated
    • None

      Steps to reproduce

      1. Install policycoreutils-restorecond package
      2. Change its config file in /etc/selinux/restorecond.conf and add "/usr/*" line there
      3. Restart the restorecond service

      Expected results

      /usr/bin/dbus* files retain correct SELinux context

      Actual results

      SELinux context for /usr/bin/dbus* is changed to "system_u:object_r:bin_t:s0" which is not correct

              rhn-engineering-plautrba Petr Lautrbach
              ovalouse Ondrej Valousek
              Petr Lautrbach Petr Lautrbach
              Milos Malik Milos Malik
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: