Run audit2allow, and it’ll suggest you run the non-existing "semange" command rather than "semanage". # cat /var/log/audit/autid.log | audit2allow #============= httpd_t ============== #!!!! WARNING 'httpd_t' is not allowed to write or create to lib_t. Change the label to httpd_var_lib_t. #!!!! $ semange fcontext -a -t httpd_var_lib_t /usr/share/nginx/sites/example.com/data/ #!!!! $ restorecon -R -v /usr/share/nginx/sites/example.com/data/ allow httpd_t lib_t:file write; # semange fcontext -a -t httpd_var_lib_t /usr/share/nginx/sites/example.com/data/ -bash: semange: command not found # semanage fcontext -a -t httpd_var_lib_t /usr/share/nginx/sites/example.com/data/
https://github.com/fedora-selinux/selinux/commit/658d5e612d02a6a17992b73df2500141952fc9fc
policycoreutils-2.4-20.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-a7b86cd38e
policycoreutils-2.4-20.fc23 has been pushed to the Fedora 23 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-a7b86cd38e
policycoreutils-2.4-20.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.