Loading...

Type: Bug
Resolution: Cannot Reproduce
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: insights-core-selinux
Labels:
- insights-selinux

Regression:
No
Severity:
Moderate

AssignedTeam:
subs-client-tools

Story Points:
1
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
Pass
Test Coverage:
None

ProdDocsReview-CCS:
Unspecified
ProdDocsReview-Dev:
Unspecified
ProdDocsReview-QE:
Unspecified

Experience:

PX Impact Score:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

This bug happens with selinux-policy-41.40-1.fc43:

type=PROCTITLE msg=audit(05/16/2025 01:47:11.610:216) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.610:216) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.610:216) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.610:216) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x55b4603653c0 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=fwupdmgr exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.610:216) : avc: denied

{ write } for pid=7511 comm=fwupdmgr name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

----

type=PROCTITLE msg=audit(05/16/2025 01:47:11.611:217) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.611:217) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.611:217) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.611:217) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x55b460364f20 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=fwupdmgr exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.611:217) : avc: denied { write }

for pid=7511 comm=fwupdmgr name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0
----
type=PROCTITLE msg=audit(05/16/2025 01:47:11.611:218) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.611:218) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.611:218) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.611:218) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x55b460364f20 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=fwupdmgr exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.611:218) : avc: denied
{ write }

for pid=7511 comm=fwupdmgr name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

type=PROCTITLE msg=audit(05/16/2025 01:47:11.611:219) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.611:219) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.611:219) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.611:219) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x55b460364f20 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fluid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=fwupdmgr exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.611:219) : avc: denied { write }

for pid=7511 comm=fwupdmgr name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

type=PROCTITLE msg=audit(05/16/2025 01:47:11.611:220) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.611:220) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.611:220) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.611:220) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x55b46038bb20 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=fwupdmgr exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.611:220) : avc: denied

{ write } for pid=7511 comm=fwupdmgr name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

----

type=PROCTITLE msg=audit(05/16/2025 01:47:11.612:221) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.612:221) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.612:221) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.612:221) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x7f2c6400ffb0 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=dconf worker exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.612:221) : avc: denied { write }

for pid=7511 comm=dconf worker name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0
----
type=PROCTITLE msg=audit(05/16/2025 01:47:11.612:222) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.612:222) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.612:222) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.612:222) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x7f2c6400ffb0 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=dconf worker exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.612:222) : avc: denied
{ write }

for pid=7511 comm=dconf worker name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

type=PROCTITLE msg=audit(05/16/2025 01:47:11.612:223) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.612:223) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.612:223) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.612:223) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x7f2c6400ffb0 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=dconf worker exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.612:223) : avc: denied { write }

for pid=7511 comm=dconf worker name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

type=PROCTITLE msg=audit(05/16/2025 01:47:11.613:224) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.613:224) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.613:224) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.613:224) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x7f2c6400ffb0 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=dconf worker exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.613:224) : avc: denied

{ write }

for pid=7511 comm=dconf worker name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

type=PROCTITLE msg=audit(05/16/2025 01:47:11.613:225) : proctitle=/usr/bin/fwupdmgr security --force --json

type=PATH msg=audit(05/16/2025 01:47:11.613:225) : item=0 name=/root/.cache/dconf/user inode=33564177 dev=fd:00 mode=file,600 ouid=root ogid=root rdev=00:00 obj=unconfined_u:object_r:config_home_t:s0 nametype=NORMAL cap_fp=none cap_fi=none cap_fe=0 cap_fver=0 cap_frootid=0

type=CWD msg=audit(05/16/2025 01:47:11.613:225) : cwd=/

type=SYSCALL msg=audit(05/16/2025 01:47:11.613:225) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x7f2c6400ffb0 a2=O_RDWR|O_CREAT a3=0x180 items=1 ppid=7510 pid=7511 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=dconf worker exe=/usr/bin/fwupdmgr subj=system_u:system_r:insights_core_t:s0 key=(null)

type=AVC msg=audit(05/16/2025 01:47:11.613:225) : avc: denied { write }

for pid=7511 comm=dconf worker name=user dev="dm-0" ino=33564177 scontext=system_u:system_r:insights_core_t:s0 tcontext=unconfined_u:object_r:config_home_t:s0 tclass=file permissive=0

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates

Hide