Details
-
Bug
-
Resolution: Unresolved
-
Undefined
-
rhel-8.8.0
-
selinux-policy-3.14.3-129.el8
-
Normal
-
sst_security_selinux
-
ssg_security
-
6
-
QE ack, Dev ack
-
False
-
-
No
-
Red Hat Enterprise Linux
-
All
Description
What were you trying to do that didn't work?
systemctl start numad
Please provide the package NVR for which bug is seen:
selinux-policy-3.14.3-117.el8_8.2.noarch
numad-0.5-26.20150602git.el8.x86_64
How reproducible:
everytime
Steps to reproduce
- systemctl start numad
- systemctl status numad
Expected results
numad starts
Actual results
● numad.service - numad - The NUMA daemon that manages application locality.
Loaded: loaded (/usr/lib/systemd/system/numad.service; disabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Wed 2023-09-06 10:32:43 MDT; 8s ago
Docs: man:numad
Process: 3034671 ExecStart=/usr/bin/numad -i 15 (code=exited, status=1/FAILURE)
type=AVC msg=audit(1694017894.240:455273): avc: denied { ipc_owner } for pid=3034443 comm="numad" capability=15 scontext=system_u:system_r:numad_t:s0-s0:c0.c1023 tcontext=system_u:system_r:numad_t:s0-s0:c0.c1023 tclass=capability permissive=0
See also: https://github.com/fedora-selinux/selinux-policy/pull/1400
Attachments
Issue Links
- links to
-
RHBA-2023:121335
selinux-policy bug fix and enhancement update
- mentioned on
