Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-99318

AVC denials for "allow virtqemud_t insights_core_t:dir search; allow virtqemud_t insights_core_t:file { open read };"

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • selinux-policy-42.1.3-1.el10
    • No
    • Moderate
    • 1
    • rhel-security-selinux
    • 22
    • 1
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • SELINUX 250716: 9
    • Hide

      The reported SELinux denials do not appear anymore. SELinux policy brings relevant rules to counter them.

      Show
      The reported SELinux denials do not appear anymore. SELinux policy brings relevant rules to counter them.
    • Pass
    • RegressionOnly
    • Release Note Not Required
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      This bug happens with selinux-policy-41.43-1.fc43.noarch.rpm:

       

      ----
      type=PROCTITLE msg=audit(06/05/2025 05:42:01.713:202) : proctitle=/usr/sbin/virtqemud --timeout 120 
      
      type=PATH msg=audit(06/05/2025 05:42:01.713:202) : item=0 name=/proc/10149/stat inode=30657 dev=00:16 mode=file,444 ouid=root ogid=root rdev=00:00 obj=system_u:system_r:insights_core_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0 
      
      type=CWD msg=audit(06/05/2025 05:42:01.713:202) : cwd=/ 
      
      type=SYSCALL msg=audit(06/05/2025 05:42:01.713:202) : arch=x86_64 syscall=openat success=yes exit=19 a0=AT_FDCWD a1=0x555aa56ad850 a2=O_RDONLY a3=0x0 items=1 ppid=1 pid=9890 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=rpc-virtqemud exe=/usr/sbin/virtqemud subj=system_u:system_r:virtqemud_t:s0 key=(null) 
      
      type=AVC msg=audit(06/05/2025 05:42:01.713:202) : avc:  denied  { open } for  pid=9890 comm=rpc-virtqemud path=/proc/10149/stat dev="proc" ino=30657 scontext=system_u:system_r:virtqemud_t:s0 tcontext=system_u:system_r:insights_core_t:s0 tclass=file permissive=1 
      
      type=AVC msg=audit(06/05/2025 05:42:01.713:202) : avc:  denied  { read } for  pid=9890 comm=rpc-virtqemud name=stat dev="proc" ino=30657 scontext=system_u:system_r:virtqemud_t:s0 tcontext=system_u:system_r:insights_core_t:s0 tclass=file permissive=1 
      
      type=AVC msg=audit(06/05/2025 05:42:01.713:202) : avc:  denied  { search } for  pid=9890 comm=rpc-virtqemud name=10149 dev="proc" ino=30652 scontext=system_u:system_r:virtqemud_t:s0 tcontext=system_u:system_r:insights_core_t:s0 tclass=dir permissive=1
      ----
      

              rhn-support-zpytela Zdenek Pytela
              qianzhan@redhat.com Qianqian Zhang
              Zdenek Pytela Zdenek Pytela
              Milos Malik Milos Malik
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated: