Actions
Bug #17518
closed
postgresl client in relayd tries to read krb conf
Pull Request:
Severity:
Minor - inconvenience | misleading | easy workaround
UX impact:
User visibility:
Infrequent - complex configurations | third party integrations
Effort required:
Priority:
22
Name check:
To do
Fix check:
To do
Regression:
Description
type=AVC msg=audit(1590510637.766:7451): avc: denied { getattr } for pid=30214 comm="r2d2-worker-1" path="/etc/krb5.conf" dev="dm-0" ino=68899692 scontext=system_u:system_r:rudder_relayd_t:s0 tcontext=system_u:object_r:krb5_conf_t:s0 tclass=file permissive=0
It should not be necessary.
Updated by Vincent MEMBRÉ almost 4 years ago
- Target version changed from 6.1.0~rc1 to 6.1.0~rc2
Updated by Alexis Mousset almost 4 years ago
- Status changed from New to In progress
- Assignee set to Alexis Mousset
Updated by Alexis Mousset almost 4 years ago
- Status changed from In progress to Pending technical review
- Assignee changed from Alexis Mousset to Benoît PECCATTE
- Pull Request set to https://github.com/Normation/rudder/pull/3025
Updated by Alexis Mousset almost 4 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder|bc88dffdf3bc28f8e7fba580077e0a92584ecee7.
Updated by Vincent MEMBRÉ almost 4 years ago
- Status changed from Pending release to Released
This bug has been fixed in Rudder 6.1.0~rc2 which was released today.
Updated by Alexis Mousset over 3 years ago
- Related to Bug #18078: SELinux error for relayd search access on krb5 on centos 8 added
Actions