Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-83004

selinux checking rule 'allow zebra_t NetworkManager_t : file { getattr open read } [ ] failed

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Undefined Undefined
    • None
    • rhel-10.0
    • frr
    • None
    • No
    • None
    • rhel-net-perf
    • ssg_core_services
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • All
    • None

      Found during Tier review [rhel-10.0] RC Baseline

      Please provide the package NVR for which the bug is seen:

      frr-10.1-10.el10.x86_64

      How reproducible is this bug?:

      always

      Steps to reproduce

      1.  Run Selinux-sanity test

      Expected results:

      Test passed

      Actual results:

      Test fails

       

      [ 05:35:30 ] :: [   PASS   ] ::   check permission 'frr_t' is present (Assert: '0' should equal '0')
      :: [ 05:35:30 ] :: [   INFO   ] :: rlSESearchRule: checking rule 'allow zebra_t NetworkManager_t : file { getattr open read } [ ]'
      FILTERED RULES
      zebra_t is not a valid type attribute
      :: [ 05:35:31 ] :: [   FAIL   ] ::   check permission 'getattr' is present (Assert: '1' should equal '0')
      :: [ 05:35:31 ] :: [   FAIL   ] ::   check permission 'open' is present (Assert: '1' should equal '0')
      :: [ 05:35:31 ] :: [   FAIL   ] ::   check permission 'read' is present (Assert: '1' should equal '0')
      ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
      ::   Duration: 6s
      ::   Assertions: 6 good, 3 bad
      ::   RESULT: FAIL (Checking rules)

              mruprich@redhat.com Michal Ruprich
              rhn-support-fhrdina Frantisek Hrdina
              Michal Ruprich Michal Ruprich
              Frantisek Hrdina Frantisek Hrdina
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: