Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-19296

grafana-server sigsegv with selinux policy enforcing

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Normal Normal
    • rhel-9.4
    • rhel-9.4
    • grafana
    • grafana-9.2.10-13.el9
    • Yes
    • Moderate
    • Regression
    • rhel-sst-pt-pcp
    • ssg_platform_tools
    • 18
    • 22
    • 1
    • QE ack, Dev ack
    • False
    • Hide

      None

      Show
      None
    • None
    • Red Hat Enterprise Linux
    • None
    • All
    • None

      We have had a few reports of a grafana-server crash when selinux policy is in effect in RHEL 9.4.  This is preceded by some AVC denials, so the working theory is that this is selinux related.  Stan also confirmed this doesn't seem to happen when running locally from the shell, with unconfined policy.

      
type=AVC msg=audit(1702342060.402:2116): avc: denied { getattr } for pid=40738 comm="grafana-server" path="/efi" dev="xvda2" ino=1 scontext=system_u:system_r:grafana_t:s0 tcontext=system_u:object_r:dosfs_t:s0 tclass=dir permissive=0
type=AVC msg=audit(1702342060.848:2136): avc: denied { getattr } for pid=40753 comm="grafana-server" path="/efi" dev="xvda2" ino=1 scontext=system_u:system_r:grafana_t:s0 tcontext=system_u:object_r:dosfs_t:s0 tclass=dir permissive=0

              rh-ee-sfeifer Sam Feifer
              nathans@redhat.com Nathan Scott
              pcp-maint pcp-maint
              Jan Kurik Jan Kurik
              Jacob Valdez Jacob Valdez (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              10 Start watching this issue

                Created:
                Updated:
                Resolved: