Bug 1485055

Summary: incorrect selinux context for /usr/bin/docker-storage-setup
Product: [Fedora] Fedora Reporter: Michael Nguyen <mnguyen>
Component: selinux-policyAssignee: Lukas Vrabec <lvrabec>
Status: CLOSED NOTABUG QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: rawhideCC: alex.ploumistos, amessina, awilliam, brunch875, carl, c.crispino8611, dominick.grift, dustymabe, dwalsh, extras-qa, jfrieben, jsmith.fedora, kartochka378, kmansoft, kparal, lsm5, lvrabec, makruiten, mgrepl, miabbott, mikhail.v.gavrilov, plautrba, pmoore, prd-fedora, robatino, rxguy, ssekidde, stefan+redhatbugs, vondruch
Target Milestone: ---Keywords: Reopened
Target Release: ---   
Hardware: x86_64   
OS: Unspecified   
Whiteboard: AcceptedBlocker abrt_hash:6273a4068d4a412edf218f10c67e55f54ea074edf5acc8e0c9ce29d3e03e8f4b;
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1485050 Environment:
Last Closed: 2017-08-24 23:15:36 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1451379, 1485050    
Bug Blocks: 1396704    

Description Michael Nguyen 2017-08-24 22:35:32 UTC 
Description of problem:
On Fedora Atomic Host rawhide, /usr/bin/docker-storage-setup has a selinux context of  system_u:object_r:bin_t:s0 but it had a context of system_u:object_r:container_runtime_exec_t:s0 in F24 and F25.  If the context has changed, I can update the test to reflect it.

Steps to reproduce:
1.  Boot any fedora atomic host
2.  ostree remote add --no-gpg-verify custom  https://kojipkgs.fedoraproject.org/atomic/rawhide/
3.  rpm-ostree rebase custom:fedora/rawhide/x86_64/atomic-host 55a65a66f736e7637a23ddb9b649546d7b4ea247c35e32f61047dc7882d08a93
4.  systemctl reboot
5.  Reconnect
6.  ls -Z /usr/bin/docker-storage-setup

[cloud-user@fedora ~]$ ls -Z /usr/bin/docker-storage-setup 
system_u:object_r:bin_t:s0 /usr/bin/docker-storage-setup

Ostree Info:
Version: Rawhide.20170824.n.0 (2017-08-24 14:35:23)
Commit: 55a65a66f736e7637a23ddb9b649546d7b4ea247c35e32f61047dc7882d08a93
Comment 1 Dusty Mabe 2017-08-24 23:12:18 UTC 
I think bin_t is expected: https://github.com/projectatomic/atomic-host-tests/issues/133

I think we just need to update the tests to check for the same value as what is in f26.
Comment 2 Michael Nguyen 2017-08-24 23:15:36 UTC 
I'll close this bug out and update the test.
Comment 3 Dusty Mabe 2017-08-24 23:25:01 UTC 
This should fix it:
https://github.com/projectatomic/atomic-host-tests/pull/236