Bug 1149790
Summary: | Module cinder depends on permission kill in class service, not satisfied | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Miroslav Suchý <msuchy> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 21 | CC: | dominick.grift, dwalsh, lvrabec, mgrepl, plautrba, vedran |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | selinux-policy-3.13.1-90.fc21 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-10-30 10:34:04 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Miroslav Suchý
2014-10-06 16:01:53 UTC
Could you execute # yum reinstall selinux-policy-targeted yum reinstall selinux-policy-targeted ... Installing : selinux-policy-targeted-3.13.1-84.fc21.noarch 1/1 etckeeper: post transaction commit Verifying : selinux-policy-targeted-3.13.1-84.fc21.noarch I.e. no error on reinstall. I'm not sure what was the point. We needed to rebuild the policy. This is caused by upstream merge. We don't have "kill" permission in F21. But yes, this is ugly bug. It happens with SELinux enabled as well. You will need to rebuild the policy for cinder to fix this problem. I think we should just add back in those permissions in the file and mark them as not to use. https://github.com/selinux-policy/selinux-policy/commit/f20c4e38b4443f2ab7c442c20dc42b7dc57fdebe Related to link above, I think we can close this issue. I added back those permissions because it breaks updates. |