Bug 1200996 - dnssec-trigger AVCs
Summary: dnssec-trigger AVCs
Status: CLOSED DUPLICATE of bug 1210250
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy-targeted
Version: 21
Hardware: Unspecified
OS: Unspecified
Target Milestone: ---
Assignee: Lukas Vrabec
QA Contact: Ben Levenson
Depends On:
Blocks: Default_Local_DNS_Resolver
TreeView+ depends on / blocked
Reported: 2015-03-11 19:10 UTC by Charles R. Anderson
Modified: 2015-07-15 13:18 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2015-07-15 13:18:51 UTC
Type: Bug

Attachments (Terms of Use)
SELinux AVCs from dnssec-triggerd (9.17 KB, text/plain)
2015-03-11 19:10 UTC, Charles R. Anderson
no flags Details

Description Charles R. Anderson 2015-03-11 19:10:23 UTC
Created attachment 1000619 [details]
SELinux AVCs from dnssec-triggerd

Description of problem:

There are several AVCs when running dnssec-trigger in permissive mode.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. setenforce 0
2. systemctl stop dnssec-triggerd
3. systemctl stop unbound
4. systemctl start dnssec-triggerd

Actual results:

See attached AVCs.

Comment 1 Charles R. Anderson 2015-03-11 19:12:52 UTC
The impact of this bug is that the system ends up with no /etc/resolv.conf and name resolution fails.

Comment 2 Tomáš Hozza 2015-07-15 13:18:51 UTC

*** This bug has been marked as a duplicate of bug 1210250 ***

Note You need to log in before you can comment on or make changes to this bug.