Description of problem: /etc/my.cnf configuration file for mysql/mariadb has context mysqld_etc_t, but other config files under /etc/my.cnf.d/ have only etc_t. Version-Release number of selected component (if applicable): # rpm -q selinux-policy selinux-policy-3.13.1-105.3.fc21.noarch Steps to Reproduce: 1. yum install mariadb 2. ls -Z /etc/my.cnf.d/*cnf Actual results: #> ls -Z /etc/my.cnf.d/*cnf -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/my.cnf.d/client.cnf -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/my.cnf.d/mysql-clients.cnf -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/my.cnf.d/server.cnf -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/my.cnf.d/tokudb.cnf Expected results: #> ls -Z /etc/my.cnf.d/*cnf -rw-r--r--. root root system_u:object_r:mysqld_etc_t:s0 /etc/my.cnf.d/client.cnf -rw-r--r--. root root system_u:object_r:mysqld_etc_t:s0 /etc/my.cnf.d/mysql-clients.cnf -rw-r--r--. root root system_u:object_r:mysqld_etc_t:s0 /etc/my.cnf.d/server.cnf -rw-r--r--. root root system_u:object_r:mysqld_etc_t:s0 /etc/my.cnf.d/tokudb.cnf
commit 25d9dd1eb7bc41094c9e832a4243db25fe58e374 Author: Lukas Vrabec <lvrabec> Date: Mon Mar 23 11:26:14 2015 +0100 Added label mysqld_etc_t for /etc/my.cnf.d/ dir. BZ(1203989)
This bug appears to have been reported against 'rawhide' during the Fedora 23 development cycle. Changing version to '23'. (As we did not run this process for some time, it could affect also pre-Fedora 23 development cycle bugs. We are very sorry. It will help us with cleanup during Fedora 23 End Of Life. Thank you.) More information and reason for this action is here: https://fedoraproject.org/wiki/BugZappers/HouseKeeping/Fedora23
selinux-policy-3.13.1-141.fc23 has been submitted as an update for Fedora 23. https://admin.fedoraproject.org/updates/selinux-policy-3.13.1-141.fc23
Package selinux-policy-3.13.1-141.fc23: * should fix your issue, * was pushed to the Fedora 23 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing selinux-policy-3.13.1-141.fc23' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2015-13450/selinux-policy-3.13.1-141.fc23 then log in and leave karma (feedback).
selinux-policy-3.13.1-141.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.