-
Notifications
You must be signed in to change notification settings - Fork 4
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Many AVC denials on storage server machines after cluster import #2
Comments
Actually, this seems to be caused by Tendrl/tendrl-ansible#58. I will update the status of this issue when tendrl-ansible is fixed. |
Update: even with I have updated the description of this issue as well. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
After a cluster is imported and tendrl starts to monitor it, there are many avc denials in audit log on machines of the monitored cluster.
Version
I'm using latest snapshot builds from master branch.
Packages on Tendrl Storage machine:
Steps to Reproduce
ausearch -m avc
.Note: step 2 means that I'm using SELinux targetted policy in permissive mode, with all tendrl selinux packages installed.
Actual Results
There are many avc denials in audit log. And large part of that is related to collectd:
See full output of
ausearch -m avc
here: https://gist.github.com/mbukatov/c76c5832c495ebc6d3eeffa09d27a386Since all messages are included there, we can ignore the ones cased by gluster itself (eg. when exe="/usr/sbin/glusterfsd"), as those are out of scope of tendrl-selinux.
Expected Results
There are no avc messages related to collect or any other tendrl monitoring component.
The text was updated successfully, but these errors were encountered: