Bug 1848355
Summary: | default label for the /run/strongswan directory is not correct | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Milos Malik <mmalik> |
Component: | selinux-policy | Assignee: | Zdenek Pytela <zpytela> |
Status: | CLOSED ERRATA | QA Contact: | Milos Malik <mmalik> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 8.3 | CC: | jan.public, lvrabec, mmalik, plautrba, ssekidde |
Target Milestone: | rc | Keywords: | Triaged |
Target Release: | 8.4 | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | No Doc Update | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2021-05-18 14:57:37 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Milos Malik
2020-06-18 08:34:26 UTC
Should suffice to backport: commit a9a124efb4b03f40c01b66a73deb59f364281f86 Author: Zdenek Pytela <zpytela> Date: Mon Mar 23 16:05:26 2020 +0100 Allow ipsec_t connectto ipsec_mgmt_t Allow ipsec_t connectto ipsec_mgmt_t using unix_stream_socket. Label /run/strongswan with ipsec_var_run_t. Resolves: rhbz#1815983 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (selinux-policy bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2021:1639 |