Bug #21145
closedsmithi selinux logrotate warnings
0%
Description
SELinux denials found on ubuntu@smithi004.front.sepia.ceph.com: ['type=AVC msg=audit(1503805441.662:32347): avc: denied { unlink } for pid=28521 comm="logrotate" name="logrotate.status" dev="sda1" ino=27266987 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file', 'type=AVC msg=audit(1503805441.613:32345): avc: denied { create } for pid=28521 comm="logrotate" name="logrotate.status.tmp" scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file', 'type=AVC msg=audit(1503805441.613:32345): avc: denied { write } for pid=28521 comm="logrotate" path="/var/lib/logrotate/logrotate.status.tmp" dev="sda1" ino=27266690 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file', 'type=AVC msg=audit(1503805441.543:32344): avc: denied { open } for pid=28521 comm="logrotate" path="/var/lib/logrotate/logrotate.status" dev="sda1" ino=27266987 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file', 'type=AVC msg=audit(1503805441.662:32347): avc: denied { rename } for pid=28521 comm="logrotate" name="logrotate.status.tmp" dev="sda1" ino=27266690 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file', 'type=AVC msg=audit(1503805441.613:32346): avc: denied { setattr } for pid=28521 comm="logrotate" name="logrotate.status.tmp" dev="sda1" ino=27266690 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file', 'type=AVC msg=audit(1503805441.543:32344): avc: denied { read } for pid=28521 comm="logrotate" name="logrotate.status" dev="sda1" ino=27266987 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file']
/a/sage-2017-08-26_20:38:41-rados-luminous-distro-basic-smithi/1568111