Description of problem: Trying to connect to already-configured VPN after updates. SELinux is preventing openvpn from 'search' accesses on the directory NetworkManager. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that openvpn should be allowed search access on the NetworkManager directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep openvpn /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:openvpn_t:s0 Target Context system_u:object_r:NetworkManager_var_run_t:s0 Target Objects NetworkManager [ dir ] Source openvpn Source Path openvpn Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-92.fc21.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 3.17.2-300.fc21.x86_64 #1 SMP Thu Oct 30 19:23:48 UTC 2014 x86_64 x86_64 Alert Count 4 First Seen 2014-11-14 09:50:42 GMT Last Seen 2014-11-14 09:51:14 GMT Local ID 87286f06-1c90-4e9a-8b08-0700c8f3a2f1 Raw Audit Messages type=AVC msg=audit(1415958674.161:467): avc: denied { search } for pid=2977 comm="openvpn" name="NetworkManager" dev="tmpfs" ino=21263 scontext=system_u:system_r:openvpn_t:s0 tcontext=system_u:object_r:NetworkManager_var_run_t:s0 tclass=dir permissive=0 Hash: openvpn,openvpn_t,NetworkManager_var_run_t,dir,search Version-Release number of selected component: selinux-policy-3.13.1-92.fc21.noarch Additional info: reporter: libreport-2.3.0 hashmarkername: setroubleshoot kernel: 3.17.2-300.fc21.x86_64 type: libreport
*** This bug has been marked as a duplicate of bug 1164182 ***