1002035 – avc: denied { create } for pid=632 comm="systemd-tmpfile" name="tmp" scontext=system_u:system_r:systemd_tmpfiles_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir

Bug 1002035 - avc: denied { create } for pid=632 comm="systemd-tmpfile" name="tmp" scontext=system_u:system_r:systemd_tmpfiles_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir

Summary: avc: denied { create } for pid=632 comm="systemd-tmpfile" name="tmp" scont...

Keywords:
Status:	CLOSED DUPLICATE of bug 1002059
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	selinux-policy
Sub Component:
Version:	20
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Miroslav Grepl
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2013-08-28 11:20 UTC by Steve Tyler
Modified:	2013-08-29 06:33 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2013-08-28 19:27:12 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Steve Tyler 2013-08-28 11:20:20 UTC

Description of problem:
Three comm="systemd-tmpfile" avcs appear in the syslog for Bug 1001425, Attachment 791262 [details]:

16:29:53,475 NOTICE kernel:[  191.095199] type=1400 audit(1377620992.378:3): avc:  denied  { create } for  pid=632 comm="systemd-tmpfile" name="tmp" scontext=system_u:system_r:systemd_tmpfiles_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir

Version-Release number of selected component (if applicable):
Bug 1001425: (This is for the F20 Alpha TC1 DVD.)
selinux-policy-3.12.1-72.fc20.noarch (per attached packaging.log)

How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:

Comment 1 Daniel Walsh 2013-08-28 19:27:12 UTC

Did you remove the /var/tmp directory?

mkdir /var/tmp
restorecon /var/tmp

Should fix the problem

Comment 2 Steve Tyler 2013-08-28 19:43:46 UTC

This was on the installer DVD. I filed this before I tried a reproducer.

This bug has more details:
Bug 1002059 - avc: denied messages in syslog after booting Fedora-20-Alpha-TC1-x86_64-DVD.iso

Comment 3 Steve Tyler 2013-08-28 19:49:51 UTC

(In reply to Daniel Walsh from comment #1)
> Did you remove the /var/tmp directory?
> 
> mkdir /var/tmp
> restorecon /var/tmp
> 
> Should fix the problem

Shouldn't that be done when the installer DVD is composed?

Comment 4 Daniel Walsh 2013-08-28 20:20:26 UTC

Yes the /var/tmp directory should exist and be labeled correctly.

Comment 5 Steve Tyler 2013-08-29 06:33:27 UTC


*** This bug has been marked as a duplicate of bug 1002059 ***

Note You need to log in before you can comment on or make changes to this bug.