Description of problem: In current policy there is a login named system_u mapped to the system_u SELinux user. This seems to be have used in the past to allow daemons like cronie to get a default context for a "system" user: https://github.com/henrysher/cronie/commit/e5280235809844f54d5956ec281472b63dcfc3f4 With a recent patch submitted to genhomedircon which removes the hardcoded user identifier (and a conditional which skips homedir context generation for that login) we now see a warning: libsemanage.add_user: user system_u not in password file Version-Release number of selected component (if applicable): 3.13.1-191.14.fc24 How reproducible: Steps to Reproduce: Run genhomedircon with new patch See http://marc.info/?t=147317021100002&r=1&w=2 Actual results: A warning that no login exists for a user named "system_u" Expected results: No warnings Additional info:
This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component.
Still present with selinux-policy-3.13.1-218.fc26.noarch
*** Bug 1382880 has been marked as a duplicate of this bug. ***
A temporary Rawhide scratch build with remove system_u can be found here - http://koji.fedoraproject.org/koji/taskinfo?taskID=16027663
To fix it in dist-git, extract config.tgz, use the following patch and recreate the archive config.tgz. diff -r -u config/appconfig-mcs/seusers config.fixed/appconfig-mcs/seusers --- config/appconfig-mcs/seusers 2009-08-28 21:06:34.000000000 +0200 +++ config.fixed/appconfig-mcs/seusers 2016-10-10 13:52:22.706584896 +0200 @@ -1,3 +1,2 @@ -system_u:system_u:s0-mcs_systemhigh root:unconfined_u:s0-mcs_systemhigh __default__:unconfined_u:s0-mcs_systemhigh diff -r -u config/appconfig-mls/seusers config.fixed/appconfig-mls/seusers --- config/appconfig-mls/seusers 2009-08-28 20:59:08.000000000 +0200 +++ config.fixed/appconfig-mls/seusers 2016-10-10 13:52:22.812584921 +0200 @@ -1,3 +1,2 @@ -system_u:system_u:s0-mls_systemhigh root:root:s0-mls_systemhigh __default__:user_u:s0 diff -r -u config/appconfig-standard/seusers config.fixed/appconfig-standard/seusers --- config/appconfig-standard/seusers 2009-08-28 20:59:08.000000000 +0200 +++ config.fixed/appconfig-standard/seusers 2016-10-10 13:52:22.742584905 +0200 @@ -1,3 +1,2 @@ -system_u:system_u root:root __default__:user_u
http://koji.fedoraproject.org/koji/taskinfo?taskID=16028136 fc25 scratch build
Thank you Petr for builds.
*** Bug 1384809 has been marked as a duplicate of this bug. ***
*** Bug 1385379 has been marked as a duplicate of this bug. ***
selinux-policy-3.13.1-191.20.fc24 has been submitted as an update to Fedora 24. https://bodhi.fedoraproject.org/updates/FEDORA-2016-7ce27629b3
selinux-policy-3.13.1-191.20.fc24 has been pushed to the Fedora 24 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-7ce27629b3
selinux-policy-3.13.1-191.20.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.