Bug 667703
Summary: | selinux policy for corosync fails to allow it to read config | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Steve Whitehouse <swhiteho> | ||||
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> | ||||
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | low | ||||||
Version: | 14 | CC: | dwalsh, fdinitto, mgrepl, sdake | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | Unspecified | ||||||
OS: | Unspecified | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2011-01-06 19:21:16 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Steve Whitehouse
2011-01-06 15:08:05 UTC
What AVC messages are you seeing? # ausearch -m avc -ts today Also how is "/etc/cluster/cluster.conf" labeled? # ls -Z /etc/cluster/cluster.conf [root@gfs-a24c-01 ~]# ls -Z /etc/cluster/cluster.conf -rw-r-----. root root unconfined_u:object_r:admin_home_t:s0 /etc/cluster/cluster.conf Created attachment 472079 [details]
ausearch -m avc -ts today >my.avc
Steve you created the file in /root and then moved it to /etc/cluster/cluster.conf This means it maintained the label of admin_home_t which corosync would not be allowed to read. Run restorecon -R -v /etc/cluster Will fix the problem. |