Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-19596

grafana-server sigsegv with selinux policy enforcing

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Normal Normal
    • rhel-8.10
    • rhel-8.10
    • grafana
    • grafana-9.2.10-14.el8
    • Yes
    • Moderate
    • Regression
    • sst_pt_pcp
    • ssg_platform_tools
    • 18
    • 22
    • 1
    • QE ack, Dev ack
    • False
    • Hide

      None

      Show
      None
    • None
    • Red Hat Enterprise Linux
    • None
    • All
    • None

      We have had a few reports of a grafana-server crash when selinux policy is in effect in RHEL 9.4.  This is preceded by some AVC denials, so the working theory is that this is selinux related.  Stan also confirmed this doesn't seem to happen when running locally from the shell, with unconfined policy.

      
type=AVC msg=audit(1702342060.402:2116): avc: denied { getattr } for pid=40738 comm="grafana-server" path="/efi" dev="xvda2" ino=1 scontext=system_u:system_r:grafana_t:s0 tcontext=system_u:object_r:dosfs_t:s0 tclass=dir permissive=0
type=AVC msg=audit(1702342060.848:2136): avc: denied { getattr } for pid=40753 comm="grafana-server" path="/efi" dev="xvda2" ino=1 scontext=system_u:system_r:grafana_t:s0 tcontext=system_u:object_r:dosfs_t:s0 tclass=dir permissive=0

            rh-ee-sfeifer Sam Feifer
            nathans@redhat.com Nathan Scott
            pcp-maint pcp-maint
            Jan Kurik Jan Kurik
            Jacob Valdez Jacob Valdez (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: