https://bugzilla.suse.com/show_bug.cgi?id=1228742 https://bugzilla.suse.com/show_bug.cgi?id=1228742#c14 --- Comment #14 from Philippe Condé <conde.philippe@skynet.be> --- (In reply to Cathy Hu from comment #13)

this one will be fixed from our side (i am currently waiting for review from a colleague): type=AVC msg=audit(1725029554.795:1882): avc: denied { ipc_info } for pid=485060 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1

this one, please try also labeling it virt_image_t: type=AVC msg=audit(1725029554.798:1883): avc: denied { getattr } for pid=485060 comm="libvirt_parthel" path="/dev/sda2" dev="devtmpfs" ino=390 scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=1

Hello, Current SELinux hpprol2:/dev # zypper info selinux-policy | grep Version Version : 20240912-282.1 hpprol2:/dev # but I have still theses errors type=AVC msg=audit(1726392259.300:227): avc: denied { ipc_info } for pid=21501 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1 type=AVC msg=audit(1726392259.300:228): avc: denied { getattr } for pid=21501 comm="libvirt_parthel" path="/dev/sda2" dev="devtmpfs" ino=391 scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=1 type=AVC msg=audit(1726392262.737:261): avc: denied { ipc_info } for pid=21606 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1 type=AVC msg=audit(1726392262.737:262): avc: denied { getattr } for pid=21606 comm="libvirt_parthel" path="/dev/sda2" dev="devtmpfs" ino=391 scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=1 type=AVC msg=audit(1726392263.270:264): avc: denied { ipc_info } for pid=21628 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1 Can I relabel /dev/sda2 without problem for other programs trying to access the partition /dev/sda2? Many thanks in advance Philippe -- You are receiving this mail because: You are on the CC list for the bug.