Uploaded image for project: 'ZABBIX BUGS AND ISSUES'
  1. ZABBIX BUGS AND ISSUES
  2. ZBX-23453

vfs.dev.discovery causes SELinux errors

XMLWordPrintable

    • Icon: Problem report Problem report
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • 6.0.21
    • Agent (G)
    • None

      Steps to reproduce:

      1. Install zabbix-agent 6.0.21 on AlmaLinux 8
      2. Start zabbix-agent service
      3. Monitor vfs.dev.discovery item

      Result:
      SELinux errors are output to /var/log/audit/audit.log.

      type=AVC msg=audit(1695357845.405:128): avc:  denied  { getattr } for  pid=1428 comm="zabbix_agentd" path="/run/initctl" dev="tmpfs" ino=19850 scontext=system_u:system_r:zabbix_agent_t:s0 tcontext=system_u:object_r:initctl_t:s0 tclass=fifo_file permissive=0
type=AVC msg=audit(1695357845.405:129): avc:  denied  { getattr } for  pid=1428 comm="zabbix_agentd" path="/run/systemd/journal/dev-log" dev="tmpfs" ino=11844 scontext=system_u:system_r:zabbix_agent_t:s0 tcontext=system_u:object_r:devlog_t:s0 tclass=sock_file permissive=0
type=AVC msg=audit(1695357845.405:130): avc:  denied  { getattr } for  pid=1428 comm="zabbix_agentd" path="/proc/kcore" dev="proc" ino=4026532029 scontext=system_u:system_r:zabbix_agent_t:s0 tcontext=system_u:object_r:proc_kcore_t:s0 tclass=file permissive=0

      Expected:
      no SELinux errors
      P.S.
      The same problem is reported in Fedora. https://bugzilla.redhat.com/show_bug.cgi?id=2170630

            yurii Jurijs Klopovskis
            kento.takahashi Kento Takahashi
            Votes:
            1 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated: