3rd party modules which provide additional network protocol support do not function with SELinux enabled in RHEL7
Issue
- 3rd party modules which extend the supported network protocols of the kernel do not work as expected when SELinux is in
enforcing
mode. - AVC denials related to the module behaviour contain nonsense
actions
and/or object classes (sclass
); hex values are seen.
Environment
- Red Hat Enterprise Linux 7
- 3rd party network protocol modules
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.