Bug 3375 - [anolis23][arm64]vhd镜像nightly /sbin/auditd服务无权限打开libcrypto.so.3导致auditd服务启动失败
Summary: [anolis23][arm64]vhd镜像nightly /sbin/auditd服务无权限打开libcrypto.so.3导致auditd服务启动失败
Status: NEW
Alias: None
Product: Anolis OS 23
Classification: Anolis OS
Component: Images&Installations (show other bugs) Images&Installations
Version: 23.0
Hardware: All Linux
: P3-Medium S3-normal
Target Milestone: ---
Assignee: gaochang
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-12-07 11:38 UTC by liuyaqing
Modified: 2023-05-29 11:51 UTC (History)
3 users (show)

See Also:

Attachments
auditd服务报错信息 (8.05 MB, image/bmp)
2022-12-07 11:38 UTC, liuyaqing 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description liuyaqing alibaba_cloud_group 2022-12-07 11:38:09 UTC 
Created attachment 513 [details]
auditd服务报错信息

Description of problem:
vhd镜像nightly 自动化测试框架执行用例启动auditd服务失败,查看auditd服务状态为failed,报错内容为auditd.service: Start request repeated too quickly. 
查看journalctl日志有libcrypto.so.3: cannot open shared object file: Permission denied信息,具体异常信息见附件

Version-Release number of selected component (if applicable):
# uname -a
Linux iZbp1airvjxoz575dnkmnlZ 5.10.134-12.1.an23.aarch64 #1 SMP Thu Oct 13 11:31:15 CST 2022 aarch64 GNU/Linux

# cat /etc/image-id
image_name="Anolis OS 23.  64 bit ARM Edition"
image_id="anolis_23__arm64_20G_alibase_20221207.vhd"
release_date="20221207023729"

How reproducible:
必现

Steps to Reproduce:
1.安装测试镜像,使用自动化测试框架运行nightly测试
2.测试结果有systemctl start auditd failed信息
3.systemctl status auditd
4.journalctl -b -u auditd

Actual results:
auditd服务启动失败

Expected results:
auditd服务正常启动

Additional info:
Comment 1 chuyang_94 alibaba_cloud_group 2022-12-07 15:10:10 UTC 
复现步骤补充:
Steps to Reproduce:
1.安装测试镜像,启动ecs
2.检查SELINUX初始状态,并将状态置为enforcing
3.开启auditd服务,systemctl status auditd
4.查看系统日志:journalctl -b -u auditd

该问题从12月2日的每日镜像开始出现,此外,之前的case会把SELINUX的状态置为enforcing,只有在该前提下会出现问题,SELINUX为permissive状态下,可以正常开启auditd服务
Comment 2 扣肉 2023-05-29 11:51:24 UTC 
auditd 的任何版本都没有指向 libcrypto.so.3 的链接。请将下面两个命令的执行结果发上来:

rpm -qf /sbin/auditd
rpm -q audit