Bug 679711
Summary: | SELinux is preventing /bin/systemd-tmpfiles from 'read' accesses on the file unix. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Sandro Mathys <sandro> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 15 | CC: | asalkeld, bert, bnocera, bruce, bugzilla.redhat, dwalsh, esm, icj, luya, mads, me, mgrepl, michel, thomas.mey, ultima.ratio.regum69, yunustj |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | setroubleshoot_trace_hash:0780c014c5b03747eaf6f8f32ca42ce4482b971a7e3f4e8183cf38fd5598c4b4 | ||
Fixed In Version: | selinux-policy-3.9.16-1.fc15 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-03-10 03:10:31 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Sandro Mathys
2011-02-23 10:05:32 UTC
*** Bug 679712 has been marked as a duplicate of this bug. *** Fixed in selinux-policy-3.9.15-3.fc15 That has not been pushed as an update, and there are several newer builds since then. Am I correct in assuming you want -2 to finish testing first, and then you'll push the latest release after that? I will probably replace -2 release by newer release on Monday. You can test it with a build from koji for now http://koji.fedoraproject.org/koji/buildinfo?buildID=231903 selinux-policy-3.9.16-1.fc15 has been submitted as an update for Fedora 15. https://admin.fedoraproject.org/updates/selinux-policy-3.9.16-1.fc15 selinux-policy-3.9.16-1.fc15 has been pushed to the Fedora 15 stable repository. If problems still persist, please make note of it in this bug report. the problem still persist even if the system updated to selinux-policy-3.9.16-1.fc15.noarch selinux-policy-targeted-3.9.16-1.fc15.noarch You mean #============= systemd_tmpfiles_t ============== allow systemd_tmpfiles_t proc_net_t:file { read open }; I get # sesearch -A -s systemd_tmpfiles_t -t proc_net_t -c file -p read Found 1 semantic av rules: allow systemd_tmpfiles_t proc_net_t : file { ioctl read getattr lock open } ; Does yum reinstall selinux-policy-targeted complain? |