Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-83549

AVC while running httpd/Regression/bz2015694-proxy-rewrite-unix-socket-fails

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • rhel-security-selinux
    • ssg_security
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • None
    • None
    • None
    • Release Note Not Required
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      Hi. Can you pls have a look?

      httpd-2.4.63-1.el10
      selinux-policy-40.13.26-1.el10

      type=PROCTITLE msg=audit(03/14/2025 09:32:31.390:725) : proctitle=/usr/sbin/httpd -DFOREGROUND 
type=SYSCALL msg=audit(03/14/2025 09:32:31.390:725) : arch=x86_64 syscall=connect success=yes exit=0 a0=0xe a1=0x7fbaa8010490 a2=0x17 a3=0x7fbaa8003140 items=0 ppid=9232 pid=9235 auid=unset uid=apache gid=apache euid=apache suid=apache fsuid=apache egid=apache sgid=apache fsgid=apache tty=(none) ses=unset comm=httpd exe=/usr/sbin/httpd subj=system_u:system_r:httpd_t:s0 key=(null) 
type=AVC msg=audit(03/14/2025 09:32:31.390:725) : avc:  denied  { connectto } for  pid=9235 comm=httpd path=/tmp/socket-test.sock scontext=system_u:system_r:httpd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=unix_stream_socket permissive=1

              rhn-support-zpytela Zdenek Pytela
              bnater@redhat.com Branislav NĂ¡ter
              Zdenek Pytela Zdenek Pytela
              SSG Security QE SSG Security QE
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated: