Skip to content

Commit

Permalink
Allow rsyslog read systemd-logind session files
Browse files Browse the repository at this point in the history 
The commit addresses the following AVC denial:
type=AVC msg=audit(06/05/24 15:29:15.928:614) : avc:  denied  { read } for  pid=1776 comm=rs:main Q:Reg name=sessions dev="tmpfs" ino=842 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:systemd_logind_sessions_t:s0 tclass=dir permissive=0
type=SYSCALL msg=audit(06/05/24 15:29:15.928:614) : arch=x86_64 syscall=openat success=no exit=EACCES(Permission denied) a0=AT_FDCWD a1=0x7f99cbff6970 a2=O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC a3=0x0 items=0 ppid=1 pid=1776 auid=unset uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=unset comm=rs:main Q:Reg exe=/usr/sbin/rsyslogd subj=system_u:system_r:syslogd_t:s0 key=(null)

Resolves: RHEL-73839
  • Loading branch information
@zpytela
zpytela committed Jan 15, 2025
1 parent 345186d commit 3dc3466
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions policy/modules/system/logging.te
View file
Original file line number Diff line number Diff line change
Expand Up @@ -775,6 +775,7 @@ optional_policy(`
optional_policy(`
systemd_rw_bootchart_tmpfs_files(syslogd_t)
systemd_map_bootchart_tmpfs_files(syslogd_t)
systemd_read_logind_sessions_files(syslogd_t)
')

optional_policy(`
Expand Down

0 comments on commit 3dc3466

Please sign in to comment.