Bug 732072
Summary: | AVC when updating cluster configuration | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Nate Straz <nstraz> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | Milos Malik <mmalik> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 6.2 | CC: | dwalsh, mmalik |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-08-19 18:27:22 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Nate Straz
2011-08-19 17:18:20 UTC
I should mention that I am running the tool from qarsh so we're starting in the qarshd_t context and transitioning to corosync_t # sesearch -A -s corosync_t -t cluster_var_lib_t Found 3 semantic av rules: allow corosync_t cluster_var_lib_t : file { ioctl read write create getattr setattr lock append unlink link rename open } ; allow corosync_t cluster_var_lib_t : dir { ioctl read write getattr lock add_name remove_name search open } ; Nate, something is wrong with your policy. Try to reinstall. |