Wind River Support Network

HomeDefectsCGP8-295
Not to be fixed

CGP8-295 : [selinux] avc denied message related to ld.so.cache

Created: Mar 14, 2016    Updated: Apr 19, 2018
Resolved Date: Apr 17, 2018
Found In Version: 8.0.0.3
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

root@SDP_Wildcat_Pass-3-C1:~# 
root@SDP_Wildcat_Pass-3-C1:~# grep avc /var/log/audit/audit.log | grep ld.so.cache
type=AVC msg=audit(1458011682.696:37): avc:  denied  { read } for  pid=950 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011682.723:40): avc:  denied  { read } for  pid=956 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011682.788:42): avc:  denied  { read } for  pid=967 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011682.798:43): avc:  denied  { read } for  pid=971 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011682.866:46): avc:  denied  { read } for  pid=982 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011682.875:47): avc:  denied  { read } for  pid=980 comm="acpid" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:apmd_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011683.203:57): avc:  denied  { read } for  pid=1004 comm="irqbalance" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:irqbalance_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011683.359:58): avc:  denied  { read } for  pid=994 comm="ip" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:ifconfig_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011683.374:59): avc:  denied  { read } for  pid=1017 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011683.643:63): avc:  denied  { read } for  pid=1035 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011683.760:67): avc:  denied  { read } for  pid=1025 comm="microcode_ctl" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:cpucontrol_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011684.093:69): avc:  denied  { read } for  pid=1010 comm="rngd" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:rngd_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011684.993:73): avc:  denied  { read } for  pid=1081 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.255:75): avc:  denied  { read } for  pid=1122 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.375:76): avc:  denied  { read } for  pid=1128 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.775:89): avc:  denied  { read } for  pid=1193 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.784:91): avc:  denied  { read } for  pid=1196 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.786:92): avc:  denied  { read } for  pid=1198 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.788:93): avc:  denied  { read } for  pid=1200 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.793:94): avc:  denied  { read } for  pid=1203 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.796:95): avc:  denied  { read } for  pid=1205 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011685.958:97): avc:  denied  { read } for  pid=1206 comm="radiusd" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:radiusd_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011686.810:103): avc:  denied  { read } for  pid=1338 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011686.812:104): avc:  denied  { read } for  pid=1340 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011687.447:106): avc:  denied  { read } for  pid=1432 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011687.452:107): avc:  denied  { read } for  pid=1433 comm="radiusd" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:radiusd_t:s0-s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011687.453:108): avc:  denied  { read } for  pid=1435 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011688.131:113): avc:  denied  { read } for  pid=1493 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011714.217:116): avc:  denied  { read } for  pid=1507 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
type=AVC msg=audit(1458011736.604:118): avc:  denied  { read } for  pid=1513 comm="systemd-cgroups" name="ld.so.cache" dev="sda5" ino=525237 scontext=system_u:system_r:systemd_cgroups_t:s15:c0.c1023 tcontext=system_u:object_r:etc_t:s15:c0.c1023 tclass=file permissive=0
root@SDP_Wildcat_Pass-3-C1:~#

Steps to Reproduce

$ configure --enable-board=intel-x86-64 --enable-kernel=cgl --enable-rootfs=glibc-cgl
$ make fs
# boot up target with selinux=1 enforcing=1.
# on target:
root@SDP_Wildcat_Pass-3-C1:~# grep avc /var/log/audit/audit.log | grep ld.so.cache
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube