Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-93314

lsmd generates an AVC when trying to execute /usr/bin/passt-repair

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Undefined Undefined
    • None
    • rhel-9.6
    • passt
    • None
    • No
    • Low
    • rhel-virt-networking-passt-pasta
    • ssg_virtualization
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • Red Hat Enterprise Linux
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      After freshly installing a RHEL9.6 with profile "Server with GUI", as soon as the installed system starts, the following AVC can be seen in the audit log:

      type=PROCTITLE msg=audit(05/23/2025 08:30:11.371:31) : proctitle=/usr/bin/lsmd -d 
type=SYSCALL msg=audit(05/23/2025 08:30:11.371:31) : arch=x86_64 syscall=newfstatat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x55b6a46fb850 a2=0x7fff9bc956d0 a3=0x100 items=0 ppid=1 pid=779 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=lsmd exe=/usr/bin/lsmd subj=system_u:system_r:lsmd_t:s0 key=(null) 
type=AVC msg=audit(05/23/2025 08:30:11.371:31) : avc:  denied  { getattr } for  pid=779 comm=lsmd path=/usr/bin/passt-repair dev="dm-0" ino=35061245 scontext=system_u:system_r:lsmd_t:s0 tcontext=system_u:object_r:passt_repair_exec_t:s0 tclass=file permissive=0

      Package release: passt-0^20250217.ga1e48a0-1.el9

              sbrivio@redhat.com Stefano Brivio
              rhn-support-rmetrich Renaud Métrich
              Stefano Brivio Stefano Brivio
              Lei Yang Lei Yang
              Votes:
              1 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: