Description of problem: Graphite default httpd config tries to write logfiles to /var/log/graphite-web(/.*)? which results in an avc denial. When I run: semanage fcontext -a -t httpd_log_t '/var/log/graphite-web(/.*)?' and restorecon -R /var/log/graphite-web it works as expected Version-Release number of selected component (if applicable): graphite-web 0.9.12-8 Actual results: type=AVC msg=audit(1421751412.731:3441): avc: denied { open } for pid=3053 comm="httpd" path="/var/log/graphite-web/info.log" dev="dm-1" ino=1774573 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:var_log_t:s0 tclass=file permissive=0 Expected results: Additional info: Please add httpd_log_t for /var/log/graphite-web(/.*)? to the selinux-policy on all active branches
This bug appears to have been reported against 'rawhide' during the Fedora 22 development cycle. Changing version to '22'. More information and reason for this action is here: https://fedoraproject.org/wiki/Fedora_Program_Management/HouseKeeping/Fedora22