Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-37544

[RHEL-8.2] avc: denied { setfscreate } for pid=5733 comm="dnf" scontext=system_u:system_r:container_t

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Obsolete
    • Icon: Minor Minor
    • None
    • rhel-8.2.0.z
    • container-selinux
    • None
    • None
    • None
    • rhel-sst-container-tools
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • x86_64
    • None

      What were you trying to do that didn't work?

       

      time->Sat May 11 04:59:19 2024
type=AVC msg=audit(1715417959.485:249): avc:  denied  { setfscreate } for  pid=5733 comm="dnf" scontext=system_u:system_r:container_t:s0:c6,c809 tcontext=system_u:system_r:container_t:s0:c6,c809 tclass=process permissive=0

       

      Job: https://beaker.engineering.redhat.com/recipes/16110586#task177517496

      Please provide the package NVR for which bug is seen:

      selinux-policy-3.14.3-41.el8_2.9.noarch

      How reproducible:

      always

      Steps to reproduce

      1. run https://gitlab.cee.redhat.com/kernel-qe/kernel/-/archive/master/kernel-master.tar.gz#rt-tests/rt_container with rt kernel
      2.  
      3.  

      Expected results

      NO avc_check failure 

      Actual results

      avc_check failed

              dwalsh@redhat.com Daniel Walsh (Inactive)
              yinchang0124 Chang Yin
              Container Runtime Eng Bot Container Runtime Eng Bot
              Container Runtime Bugs Bot Container Runtime Bugs Bot
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated:
                Resolved: