Hi.
I'm using refpolicy 2.20250213 and systemd 257.4 from Yocto Walnascar.
When running systemd-logind I get denials for journald reading logind session files:
type=AVC msg=audit(1764847985.438:60): avc: denied { read } for pid=728 comm="systemd-journal" name="sessions" dev="tmpfs" ino=816 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:systemd_sessions_runtime_t:s0 tclass=dir permissive=0
type=AVC msg=audit(1764847989.924:68): avc: denied { read } for pid=728 comm="systemd-journal" name="sessions" dev="tmpfs" ino=816 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:systemd_sessions_runtime_t:s0 tclass=dir permissive=0
I can fix those by adding to logging.te:
systemd_read_logind_sessions_files(syslogd_t)
Could you please verify and if applicable add this rule?
Thanks,
Daniel
Hi.
I'm using
refpolicy 2.20250213andsystemd 257.4from Yocto Walnascar.When running
systemd-logindI get denials forjournaldreading logind session files:I can fix those by adding to
logging.te:Could you please verify and if applicable add this rule?
Thanks,
Daniel