Description of problem: SELinux is preventing chmod from 'setattr' accesses on the file cmd. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that chmod should be allowed setattr access on the cmd file by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep chmod /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:system_mail_t:s0 Target Context system_u:object_r:root_t:s0 Target Objects cmd [ file ] Source chmod Source Path chmod Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-128.2.fc22.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Permissive Host Name (removed) Platform Linux (removed) 4.0.6-300.fc22.x86_64 #1 SMP Tue Jun 23 13:58:53 UTC 2015 x86_64 x86_64 Alert Count 6 First Seen 2015-07-04 12:53:40 GST Last Seen 2015-07-05 14:28:31 GST Local ID 04981dc3-7e78-4022-b0cb-c38122294c2a Raw Audit Messages type=AVC msg=audit(1436092111.944:573): avc: denied { setattr } for pid=2680 comm="chmod" name="cmd" dev="sdc1" ino=2490805 scontext=system_u:system_r:system_mail_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=file permissive=1 Hash: chmod,system_mail_t,root_t,file,setattr Version-Release number of selected component: selinux-policy-3.13.1-128.2.fc22.noarch Additional info: reporter: libreport-2.6.0 hashmarkername: setroubleshoot kernel: 4.0.6-300.fc22.x86_64 type: libreport
Fedora 22 changed to end-of-life (EOL) status on 2016-07-19. Fedora 22 is no longer maintained, which means that it will not receive any further security or bug fix updates. As a result we are closing this bug. If you can reproduce this bug against a currently maintained version of Fedora please feel free to reopen this bug against that version. If you are unable to reopen this bug, please file a new report against the current release. If you experience problems, please add a comment to this bug. Thank you for reporting this bug and we are sorry it could not be fixed.