Description of problem: Umount a USB flash device, then the alert pop up. SELinux is preventing /usr/bin/mkdir from 'create' accesses on the directory .texlive2013. ***** Plugin catchall (100. confidence) suggests ************************** If vous pensez que mkdir devrait être autorisé à accéder create sur .texlive2013 directory par défaut. Then vous devriez rapporter ceci en tant qu'anomalie. Vous pouvez générer un module de stratégie local pour autoriser cet accès. Do autoriser cet accès pour le moment en exécutant : # grep mkdir /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context unconfined_u:unconfined_r:thumb_t:s0-s0:c0.c1023 Target Context unconfined_u:object_r:user_home_dir_t:s0 Target Objects .texlive2013 [ dir ] Source mkdir Source Path /usr/bin/mkdir Port <Unknown> Host (removed) Source RPM Packages coreutils-8.21-18.fc20.x86_64 Target RPM Packages Policy RPM selinux-policy-3.12.1-106.fc20.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 3.11.10-301.fc20.x86_64 #1 SMP Thu Dec 5 14:01:17 UTC 2013 x86_64 x86_64 Alert Count 3 First Seen 2013-12-11 14:15:47 CET Last Seen 2013-12-11 14:15:48 CET Local ID 1cf66fcc-a5bc-45a6-a423-052833472581 Raw Audit Messages type=AVC msg=audit(1386767748.132:1456): avc: denied { create } for pid=30789 comm="mkdir" name=".texlive2013" scontext=unconfined_u:unconfined_r:thumb_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_dir_t:s0 tclass=dir type=SYSCALL msg=audit(1386767748.132:1456): arch=x86_64 syscall=mkdir success=no exit=EACCES a0=7fff3bf9b6d7 a1=1ff a2=1ff a3=7fff3bf99770 items=0 ppid=30783 pid=30789 auid=1000 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 ses=1 tty=(none) comm=mkdir exe=/usr/bin/mkdir subj=unconfined_u:unconfined_r:thumb_t:s0-s0:c0.c1023 key=(null) Hash: mkdir,thumb_t,user_home_dir_t,dir,create Additional info: reporter: libreport-2.1.9 hashmarkername: setroubleshoot kernel: 3.11.10-301.fc20.x86_64 type: libreport Potential duplicate: bug 982515
66670ba0b71dc104a3c56677b8335523b98155ed and 7ac23dd07d59fc9d22e3cd06703a561051501cf2 fix this in git.
back ported.
selinux-policy-3.12.1-116.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/selinux-policy-3.12.1-116.fc20
Package selinux-policy-3.12.1-116.fc20: * should fix your issue, * was pushed to the Fedora 20 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing selinux-policy-3.12.1-116.fc20' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2014-0806/selinux-policy-3.12.1-116.fc20 then log in and leave karma (feedback).
selinux-policy-3.12.1-116.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.