Bug 1414130
Summary: | Re-declaration of docker_t error when upgrade selinux-policy-targeted | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Marko Myllynen <myllynen> |
Component: | selinux-policy | Assignee: | Lukas Vrabec <lvrabec> |
Status: | CLOSED ERRATA | QA Contact: | Milos Malik <mmalik> |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | 7.3 | CC: | darcari, dwalsh, lvrabec, mgrepl, mmalik, plautrba, pvrabec, ssekidde, zpytela |
Target Milestone: | rc | Keywords: | Reopened |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2017-08-01 15:20:12 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1420851 |
Description
Marko Myllynen
2017-01-17 20:45:38 UTC
This happened, I belive, because you had a former bad container-selinux package installed. The latest container-selinux disables docker module, whereas a test version removed it. Disabling it should not cause this issue, since selinux-policy-targeted will just update the disabled module. Where as the older version of contianer-selinux which removed the docker module, the updated selinux-policy would re-add it causing this issue. dnf remove container-selinux dnf reinstall selinux-policy dnf install container-selinux Should fix the issue. (In reply to Daniel Walsh from comment #1) > This happened, I belive, because you had a former bad container-selinux > package installed. > > The latest container-selinux disables docker module, whereas a test version > removed it. Disabling it should not cause this issue, since > selinux-policy-targeted will just update the disabled module. Where as the > older version of contianer-selinux which removed the docker module, the > updated selinux-policy would re-add it causing this issue. > > dnf remove container-selinux > dnf reinstall selinux-policy > dnf install container-selinux > > Should fix the issue. Thanks, this it, these steps worked. I'm going to investigate if the same problem appears after application of the latest batch update. So this is happening if container-selinux is not installed? Yes, docker* or container* RPM packages were never installed on the machines, which I used for testing. Ok so I guess lukas has removed the docker.pp and replaced it with container.pp in the default install. On update it seems like it is not removing docker.pp at the same time as it is adding container.pp? *** Bug 1427296 has been marked as a duplicate of this bug. *** Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2017:1861 |