Bug #18078: SELinux error for relayd search access on krb5 on centos 8 - Rudder - Issue Tracker

Actions

Copy link

Bug #18078

open

SELinux error for relayd search access on krb5 on centos 8

Added by François ARMAND almost 4 years ago. Updated about 2 years ago.

Status:

New

Priority:

N/A

Assignee:

Category:

Relay server or API

Target version:

6.1.2

Pull Request:

Severity:

Trivial - no functional impact | cosmetic

UX impact:

User visibility:

Infrequent - complex configurations | third party integrations

Effort required:

Priority:

Name check:

To do

Fix check:

To do

Regression:

Description

Jul 31 06:05:44 server setroubleshoot[12830]: SELinux is preventing /opt/rudder/bin/rudder-relayd from search access on the directory krb5. For complete SELinux messages run: sealert -l 07e5b566-8a9d-4635-965f-22c336cc3c99
Jul 31 06:05:44 server platform-python[12830]: SELinux is preventing /opt/rudder/bin/rudder-relayd from search access on the directory krb5.
                                               *****  Plugin catchall (100. confidence) suggests   **************************
                                               If you believe that rudder-relayd should be allowed search access on the krb5 directory by default.
                                               Then you should report this as a bug.
                                               You can generate a local policy module to allow this access.
                                               Do
                                               allow this access for now by executing:
                                               # ausearch -c 'r2d2-worker-1' --raw | audit2allow -M my-r2d2worker1
                                               # semodule -X 300 -i my-r2d2worker1.pp

Files

journal-centos8.txt (283 KB) journal-centos8.txt

François ARMAND, 2020-07-31 08:27

Related issues 2 (0 open — 2 closed)

Actions

Copy link

Also available in: Atom PDF

	Related to Rudder - Bug #18070: Broken relay postinst due to missing shared-folder	Released	Benoît PECCATTE				Actions
	Related to Rudder - Bug #17518: postgresl client in relayd tries to read krb conf	Released	Benoît PECCATTE				Actions

Project

General

Profile

Rudder

Custom queries

Bug #18078

SELinux error for relayd search access on krb5 on centos 8

Updated by François ARMAND almost 4 years ago

Updated by Vincent MEMBRÉ over 3 years ago

Updated by Vincent MEMBRÉ over 3 years ago

Updated by Alexis Mousset over 3 years ago

Updated by Alexis Mousset over 3 years ago

Updated by Benoît PECCATTE over 2 years ago

Updated by Alexis Mousset over 2 years ago

Updated by Alexis Mousset about 2 years ago