Bug 849336
Summary: | SELinux is preventing /usr/sbin/tmpwatch from 'rmdir' accesses on the directory include. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Ladislav Nesnera <nesnera> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 17 | CC: | dominick.grift, dwalsh, mgrepl |
Target Milestone: | --- | Keywords: | Reopened |
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Unspecified | ||
Whiteboard: | abrt_hash:691b2d99f946a3f00d3c8cb1923757faabc23f1ee08c2c9adfe7a3c05506146c | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2012-08-22 12:24:36 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Ladislav Nesnera
2012-08-18 13:11:42 UTC
It looks like you moved include dir to /tmp directory? If yes, you need to execute # chcon -Rt user_tmp_t /tmp/include I have clean Fedora installation without any my specific modification. I found out these "include" directories: file:///tmp/vbox.0/include/ file:///usr/include/ file:///usr/lib/gcc/x86_64-redhat-linux/4.7.0/include/ file:///usr/lib/kbd/keymaps/include/ file:///usr/lib/kbd/keymaps/mac/include/ file:///usr/lib/kbd/keymaps/i386/include/ file:///usr/lib/python2.7/site-packages/django/contrib/admin/templates/admin/includes/ file:///usr/share/selinux/devel/include/ file:///usr/share/doc/xen-licenses-4.1.2/tools/include/ file:///usr/share/doc/xen-licenses-4.1.2/xen/include/ file:///usr/share/doc/xen-licenses-4.1.2/dist/install/usr/include/ file:///usr/share/doc/python-paste-1.7.5.1/include/ file:///usr/share/virtualbox/src/vboxhost/vboxnetadp/include/ file:///usr/share/virtualbox/src/vboxhost/vboxnetflt/include/ file:///usr/share/virtualbox/src/vboxhost/vboxdrv/include/ file:///usr/share/virtualbox/src/vboxhost/vboxpci/include/ file:///usr/local/include/ file:///usr/src/kernels/3.5.2-1.fc17.x86_64/include/ file:///usr/src/kernels/3.5.2-1.fc17.x86_64/arch/cris/include/ file:///usr/src/kernels/3.5.2-1.fc17.x86_64/arch/x86/include/ file:///usr/src/kernels/3.5.1-1.fc17.x86_64/include/ file:///usr/src/kernels/3.5.1-1.fc17.x86_64/arch/cris/include/ file:///usr/src/kernels/3.5.1-1.fc17.x86_64/arch/x86/include/ file:///usr/src/kernels/3.5.0-2.fc17.x86_64/include/ file:///usr/src/kernels/3.5.0-2.fc17.x86_64/arch/cris/include/ file:///usr/src/kernels/3.5.0-2.fc17.x86_64/arch/x86/include/ Ok, what does # ls -lZ /tmp/vbox.0 # ls -lZ /tmp/vbox.0 drwxr-xr-x. root root system_u:object_r:usr_t:s0 common drwxr-xr-x. root root system_u:object_r:usr_t:s0 include drwxr-xr-x. root root system_u:object_r:usr_t:s0 linux drwxr-xr-x. root root system_u:object_r:usr_t:s0 math drwxr-xr-x. root root system_u:object_r:usr_t:s0 r0drv Ok, just to be sure could you give your output of # ls -dZ /tmp/ and then execute # chcon -R -t user_tmp_t /tmp/vbox.0 which should fix it. # ls -dZ /tmp/ drwxrwxrwt. root root system_u:object_r:tmp_t:s0 /tmp/ & # chcon -R -t user_tmp_t /tmp/vbox.0 done |