Bug 1261235
Summary: | SELinux is preventing sddm-helper from 'write' accesses on the file .Xauthority. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Richard Jasmin <spike85051> |
Component: | selinux-policy | Assignee: | Lukas Vrabec <lvrabec> |
Status: | CLOSED WORKSFORME | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | medium | ||
Version: | 22 | CC: | dominick.grift, dwalsh, lorenzo.buzzi, lvrabec, mgrepl, plautrba, spike85051 |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Unspecified | ||
Whiteboard: | abrt_hash:c06bb66b71e1c23b7dd8288b3742f124f5ae59cb4a9fe53b5bf6f9d2ebab2190 | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2015-12-17 17:20:47 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Richard Jasmin
2015-09-09 01:30:05 UTC
Are you able to reproduce it after $ restorecon ~/.Xauth* $ restorecon -F -v ~/.Xauthority resets the context to unconfined_u:object_r:xauth_home_t But at next login the context is again unconfined_u:object_r:home_root_t and sddm-helper is prevented from writing it. (In reply to Lorenzo Buzzi from comment #2) > $ restorecon -F -v ~/.Xauthority > resets the context to unconfined_u:object_r:xauth_home_t > > But at next login the context is again unconfined_u:object_r:home_root_t and > sddm-helper is prevented from writing it. Can you show us what labels are for $ ls -Z /home system_u:object_r:lost_found_t:s0 lost+found unconfined_u:object_r:user_home_dir_t:s0 me Ok it is correct. Do you still have the same issue? not anymore. seems some files may have been out of whack. I ported as it were from debian based systems a while back.Linux is wonderful in that regards but Debian based setups DO NOT have SELinux working by default. AND MIND YOU, THEY SHOULD. Getting it to work is like pulling teeth. DoD and letter agencies dont develop software to make themselves look pretty.They do it to solve a problem.So maybe people should USE it if they open source something..... |