Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-17892

policycoreutils-restorecond sets incorrect SELinux context for D-Bus daemons

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Normal Normal
    • rhel-9.4
    • rhel-9.1.0.z
    • policycoreutils
    • None
    • sst_security_selinux
    • ssg_security
    • QE ack
    • False
    • Hide

      None

      Show
      None
    • Red Hat Enterprise Linux
    • Hide

      Even if the '/bin/*' line is present in the /etc/selinux/restorecond.conf file, the restorecond service does not mislabel files in the /usr/bin/ directory during its start.

      Show
      Even if the '/bin/*' line is present in the /etc/selinux/restorecond.conf file, the restorecond service does not mislabel files in the /usr/bin/ directory during its start.

      Steps to reproduce

      1. Install policycoreutils-restorecond package
      2. Change its config file in /etc/selinux/restorecond.conf and add "/usr/*" line there
      3. Restart the restorecond service

      Expected results

      /usr/bin/dbus* files retain correct SELinux context

      Actual results

      SELinux context for /usr/bin/dbus* is changed to "system_u:object_r:bin_t:s0" which is not correct

            rhn-engineering-plautrba Petr Lautrbach
            ovalouse Ondrej Valousek
            Petr Lautrbach Petr Lautrbach
            Milos Malik Milos Malik
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: