Bug 1265132
Summary: | SELinux prevents cupsd from creating /etc/printcap | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Milos Malik <mmalik> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | Milos Malik <mmalik> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 6.8 | CC: | dwalsh, lvrabec, mgrepl, mmalik, plautrba, psklenar, pvrabec, ssekidde |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | 1265102 | Environment: | |
Last Closed: | 2015-10-05 06:51:29 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Milos Malik
2015-09-22 08:06:19 UTC
Ok so we need to find out where the dir is created and run restorecon on it. rpm -qf /etc/printcap rpm -qa --scripts |grep printcap # rpm -qf /etc/printcap setup-2.8.14-20.el6_4.1.noarch # rpm -qa --scripts | grep printcap # So this bug is about removing a dir which is owned by rpm. Not sure if it is a correct test scenario. We don't have filetrans rules for dir. filetrans_pattern(cupsd_t, cupsd_etc_t, cupsd_rw_etc_t, dir) does it work with this rule? /etc/printcap is a regular file. # rpm -qf /etc/printcap setup-2.8.71-6.el7.noarch # cat /etc/printcap # This file was automatically generated by cupsd(8) from the # /etc/cups/printers.conf file. All changes to this file # will be lost. Ok. The problem is we are not able to get it working correctly in 6.8 withou filenametrans rules. And if it is owned by the setup package I believe we can close this bug. |