查看问题详情
编号 | 项目 | 分类 | 查看权限 | 报告日期 | 最后更新 |
---|---|---|---|---|---|
0000477 | Anolis OS 8 | kernel | public | 2021-11-04 14:23 | 2021-11-16 16:41 |
报告员 | wb-wpp899309 | 分派给 | LoongsonHFD | ||
优先级 | normal | 严重性 | minor | 出现频率 | always |
状态 | assigned | 处理状况 | open | ||
平台 | aarch64 | 操作系统 | Anolis OS | 操作系统版本 | 8 |
标题 | 0000477: [Anolis OS 8.4][loongarch64] 修改selinux的状态不生效 | ||||
描述 | [缺陷描述]: /etc/selinux/config中修改SELINUX=enforcing或者SELINUX=permissive,reboot后,selinux状态依旧为原来的状态disabled,修改状态不生效 # cat /etc/selinux/config # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=enforcing # SELINUXTYPE= can take one of these three values: # targeted - Targeted processes are protected, # minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection. SELINUXTYPE=targeted [重现概率] 必现 [重现环境] # cat /etc/os-release NAME="Anolis OS" VERSION="8.4" ID="anolis" ID_LIKE="rhel fedora centos" VERSION_ID="8.4" PLATFORM_ID="platform:an8" PRETTY_NAME="Anolis OS 8.4" ANSI_COLOR="0;31" HOME_URL="https://openanolis.cn/" 内核信息: 4.19.190-2.1.an8.loongarch64 lscpu: # lscpu Architecture: loongarch64 Byte Order: Little Endian CPU(s): 4 On-line CPU(s) list: 0-3 Thread(s) per core: 1 Core(s) per socket: 4 Socket(s): 1 NUMA node(s): 1 CPU family: Loongson-64bit Model name: Loongson-3A5000 BogoMIPS: 5000.00 L1d cache: 64K L1i cache: 64K L2 cache: 256K L3 cache: 16384K NUMA node0 CPU(s): 0-3 Flags: cpucfg lam ual fpu lsx lasx complex crypto lvz lbt_x86 lbt_arm lbt_mips # free -h total used free shared buff/cache available Mem: 15Gi 264Mi 15Gi 11Mi 281Mi 14Gi Swap: 8.0Gi 0B 8.0Gi [期望结果]: 修改selinux状态为enforcing,重启后,查看selinux状态应该为enforcing [实际结果]: 修改selinux状态为enforcing,重启后,selinux状态未生效 | ||||
问题重现步骤 | [重现步骤] (1)/etc/selinux/config中修改SELINUX=enforcing (2)reboot (3)查看selinux状态getenforce | ||||
标签 | 没加标签. | ||||
|
|
|
当前解决方案: 提供安全策略文件,问题是 aolis 系统目前缺少相关日志文件,导致策略文件无法正常生成。 目前正在分析不能生成日志文件的原因。 |
|
@ticat_fp:当前解决方案: 提供安全策略文件,问题是 aolis 系统目前缺少相关日志文件,导致策略文件无法正常生成。 目前正在分析不能生成日志文件的原因。 -------------------------------------------------------------------------------------------- audit 功能不正常 |
日期 | 用户名 | 字段 | 更改 |
---|---|---|---|
2021-11-04 14:23 | wb-wpp899309 | 新建问题 | |
2021-11-04 14:23 | wb-wpp899309 | 添加了以下文件:: image.png | |
2021-11-04 14:28 | wb-wpp899309 | 描述已修改 | |
2021-11-04 14:28 | wb-wpp899309 | 问题重现步骤已修改 | |
2021-11-05 10:15 | jacobwang | 分派给 | => LoongsonHFD |
2021-11-05 10:15 | jacobwang | 状态 | 新建 => 已分配 |
2021-11-16 10:03 | ticat_fp | 注释已添加: 0000706 | |
2021-11-16 15:36 | ticat_fp | 注释已添加: 0000714 | |
2021-11-16 16:41 | LoongsonHFD | 分派给 | LoongsonHFD => tanjun507 |
2021-11-16 16:41 | LoongsonHFD | 分派给 | tanjun507 => LoongsonHFD |