Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-38833

rpcbind AVC occurs on s390x rhel9.5 when running socat test

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Normal Normal
    • rhel-9.5
    • rhel-9.5
    • selinux-policy
    • None
    • selinux-policy-38.1.39-1.el9
    • None
    • None
    • rhel-sst-security-selinux
    • ssg_security
    • 16
    • None
    • QE ack
    • False
    • Hide

      None

      Show
      None
    • No
    • None
    • Hide

      SELinux policy allows all SELinux domains to write to /dev/z90crypt character device.

      Show
      SELinux policy allows all SELinux domains to write to /dev/z90crypt character device.
    • Pass
    • Automated
    • Unspecified Release Note Type - Unknown
    • s390x
    • None

      Please provide the package NVR for which bug is seen:

      selinux-policy-38.1.38-1.el9.noarch

      How reproducible:

      always 

      Steps to reproduce

      1. Run /CoreOS/socat/Regression/ipv6-peername-segfault on s390x and rhel9.5

      Expected results

      No AVC's

      Actual results

      type=AVC msg=audit(1716801304.850:11): avc: denied { read write } for pid=718 comm="rpcbind" name="z90crypt" dev="devtmpfs" ino=100 scontext=system_u:system_r:rpcbind_t:s0 tcontext=system_u:object_r:crypt_device_t:s0 tclass=chr_file permissive=0

       

      https://beaker.engineering.redhat.com/recipes/16211407#task178144266

       

              rhn-support-zpytela Zdenek Pytela
              rhn-support-fhrdina Frantisek Hrdina
              Zdenek Pytela Zdenek Pytela
              Milos Malik Milos Malik
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: