SELinux is blocking /usr/libexec/rhsmcertd-worker (rhsmcertd_t) search calls against rpm_t:dir

Solution Verified - Updated -

Issue

The following log messages sporadically occur in audit.log indicating that SELinux blocks /usr/libexec/rhsmcertd-worker (rhsmcertd_t) search calls against rpm_t:dir:

type=AVC msg=audit(1608412490.541:135470): avc:  denied  { search } for  pid=2234105 comm="rhsmcertd-worke" name="2228683" dev="proc" ino=9825384 scontext=system_u:system_r:rhsmcertd_t:s0 tcontext=system_u:system_r:rpm_t:s0 tclass=dir permissive=0
type=SYSCALL msg=audit(1608412490.541:135470): arch=x86_64 syscall=access success=no exit=EACCES a0=7fae0793fbb0 a1=0 a2=0 a3=2 items=0 ppid=709 pid=2234105 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm=rhsmcertd-worke exe=/usr/libexec/platform-python3.6 subj=system_u:system_r:rhsmcertd_t:s0 key=(null)

Environment

  • Red Hat Enterprise Linux 8

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content