Can't report this one 'normally' as it's from a box where I can't run the sealert browser, but here's the AVC: Aug 17 22:06:19 localhost.localdomain audit[911]: AVC avc: denied { map } for pid=911 comm="unix_chkpwd" path="/etc/ld.so.cache" dev="dm-0" ino=5012252 scontext=system_u:system_r:chkpwd_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 this is happening several times during FreeIPA server deployment tests in openQA. Can't tell if it's fatal in itself or not.
this message appeared freshly kickstarted Fedora-Server-x86_64-27-20170817.n.3 - and reproducible type=AVC msg=audit(1503416983.194:126): avc: denied { map } for pid=536 comm="unix_chkpwd" path="/etc/ld.so.cache" dev="vda3" ino=8968626 scontext=system_u:system_r:chkpwd_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
selinux-policy-3.13.1-283.17.fc27 has been submitted as an update to Fedora 27. https://bodhi.fedoraproject.org/updates/FEDORA-2017-d05b1a2ab9
selinux-policy-3.13.1-283.17.fc27 has been pushed to the Fedora 27 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2017-d05b1a2ab9
selinux-policy-3.13.1-283.17.fc27 has been pushed to the Fedora 27 stable repository. If problems still persist, please make note of it in this bug report.