Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-33081

SELinux denial for dhcpcd in /run/dhcpcd

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • rhel-10.0.beta
    • rhel-10.0.beta
    • selinux-policy
    • None
    • rhel-sst-security-selinux
    • ssg_security
    • 13
    • None
    • QE ack
    • False
    • Hide

      None

      Show
      None
    • No
    • None
    • Unspecified Release Note Type - Unknown
    • None

      Please see the BZ https://bugzilla.redhat.com/show_bug.cgi?id=2270461 .

      We are removing dhcp-client as a dependency for cloud-init and replacing it with dhcpd for RHEL. We need the following fix which went into Fedora into RHEL as well

      https://github.com/fedora-selinux/selinux-policy/pull/2069/commits/104814bdd8c562618a1271d3244c651b50c8c238

      See also https://github.com/fedora-selinux/selinux-policy/pull/2069 .

      Basically we would want to get past this issue:

      AVC avc: denied { connectto } for pid=769 comm="dhcpcd" path="/run/dhcpcd/eth0-4.unpriv.sock" scontext=system_u:system_r:dhcpc_t:s0 tcontext=system_u:system_r:dhcpc_t:s0 tclass=unix_stream_socket permissive=0

       

              rhn-support-zpytela Zdenek Pytela
              rh-ee-anisinha Ani Sinha
              Zdenek Pytela Zdenek Pytela
              Milos Malik Milos Malik
              Votes:
              1 Vote for this issue
              Watchers:
              17 Start watching this issue

                Created:
                Updated: