Description of problem: SELinux is preventing firewalld from 'write' accesses on the directory root. ***** Plugin catchall (100. confidence) suggests ************************** If você acredita que o firewalld deva ser permitido acesso de write em root directory por default. Then você deve informar que este é um erro. Você pode gerar um módulo de política local para permitir este acesso. Do allow this access for now by executing: # ausearch -c 'firewalld' --raw | audit2allow -M my-firewalld # semodule -X 300 -i my-firewalld.pp Additional Information: Source Context system_u:system_r:firewalld_t:s0 Target Context system_u:object_r:admin_home_t:s0 Target Objects root [ dir ] Source firewalld Source Path firewalld Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages filesystem-3.2-37.fc24.i686 Policy RPM selinux-policy-3.13.1-207.fc25.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 4.8.0-0.rc0.git3.1.fc25.i686+PAE #1 SMP Fri Jul 29 15:10:01 UTC 2016 i686 i686 Alert Count 1 First Seen 2016-08-15 13:39:41 BRT Last Seen 2016-08-15 13:39:41 BRT Local ID 137d8fd8-0f49-4317-b770-3de15b5c9a1d Raw Audit Messages type=AVC msg=audit(1471279181.235:166): avc: denied { write } for pid=711 comm="firewalld" name="root" dev="dm-0" ino=260099 scontext=system_u:system_r:firewalld_t:s0 tcontext=system_u:object_r:admin_home_t:s0 tclass=dir permissive=0 Hash: firewalld,firewalld_t,admin_home_t,dir,write Version-Release number of selected component: selinux-policy-3.13.1-207.fc25.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.8.0-0.rc0.git3.1.fc25.i686+PAE type: libreport Potential duplicate: bug 1340611
Description of problem: I've encountered this bug after the login to a Gnome session. Version-Release number of selected component: selinux-policy-3.13.1-207.fc25.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.8.0-0.rc0.git3.1.fc25.x86_64 type: libreport
This bug appears to have been reported against 'rawhide' during the Fedora 26 development cycle. Changing version to '26'.
selinux-policy-3.13.1-260.1.fc26 has been submitted as an update to Fedora 26. https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2721b7375
selinux-policy-3.13.1-260.1.fc26 has been pushed to the Fedora 26 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2721b7375
selinux-policy-3.13.1-260.1.fc26 has been pushed to the Fedora 26 stable repository. If problems still persist, please make note of it in this bug report.