Bug 1079772

Summary: x2gocleansessions creates /tmp/.X11-unix with wrong SELinux context
Product: [Fedora] Fedora EPEL Reporter: Glenn Morris <rgm+rh>
Component: x2goserverAssignee: Orion Poplawski <orion>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: el6CC: orion
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: x2goserver-4.0.1.13-4.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-04-09 05:27:42 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Glenn Morris 2014-03-24 01:07:38 UTC 
Description of problem:

On a RHEL6 system with x2goserver installed, /tmp/.X11-unix/ can
be created with the wrong SELinux context. This causes problems
such as gdm-session-worker not being able to run getaddr on
/tmp/.X11-unix/X0 .

Version-Release number of selected component (if applicable):

RHEL 6.5, x2goserver-4.0.1.13-2.el6.x86_64

How reproducible:

Always.

Steps to Reproduce:
1. rm -rf /tmp/.X11-unix/
2. reboot
3. ls -dZ /tmp/.X11-unix/

Actual results:

drwxrwxrwt. root root system_u:object_r:initrc_tmp_t:s0 /tmp/.X11-unix

Expected results:

drwxrwxrwt. root root system_u:object_r:xdm_tmp_t:s0   /tmp/.X11-unix



Additional info:

Same issue as https://bugzilla.redhat.com/show_bug.cgi?id=499183 for freenx.

A simple patch to /etc/init.d/x2gocleansessions fixes it.
If you create $XSOCKDIR, run afterwards

[ -x /sbin/restorecon ] && /sbin/restorecon $XSOCKDIR
Comment 1 Fedora Update System 2014-03-24 17:19:41 UTC 
x2goserver-4.0.1.13-4.el6 has been submitted as an update for Fedora EPEL 6.
https://admin.fedoraproject.org/updates/x2goserver-4.0.1.13-4.el6
Comment 2 Fedora Update System 2014-03-25 22:40:07 UTC 
Package x2goserver-4.0.1.13-4.el6:
* should fix your issue,
* was pushed to the Fedora EPEL 6 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=epel-testing x2goserver-4.0.1.13-4.el6'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0949/x2goserver-4.0.1.13-4.el6
then log in and leave karma (feedback).
Comment 3 Fedora Update System 2014-04-09 05:27:42 UTC 
x2goserver-4.0.1.13-4.el6 has been pushed to the Fedora EPEL 6 stable repository.  If problems still persist, please make note of it in this bug report.