Description of problem: Hello, we had the following problem with cgit on our copr-dist-git.fedorainfracloud.org machine: type=AVC msg=audit(1514948803.346:52837): avc: denied { map } for pid=5896 comm="cgit" path="/var/lib/dist-git/git/lantw44/vim-latest/vim.git/objects/pack/pack-701fd2e5e6721ca054b00289f07d3c042f3b4956.idx" dev="vdd1" ino=105809302 scontext=system_u:system_r:git_script_t:s0 tcontext=system_u:object_r:git_user_content_t:s0 tclass=file permissive=0 We needed to make own policy containing: allow git_script_t git_user_content_t:file map; Would it be possible to solve this on distribution level? Version-Release number of selected component (if applicable): Name : selinux-policy-targeted Version : 3.13.1 Release : 283.19.fc27 Name : selinux-policy Version : 3.13.1 Release : 283.19.fc27 How reproducible: always Thank you!
selinux-policy-3.13.1-283.21.fc27 has been submitted as an update to Fedora 27. https://bodhi.fedoraproject.org/updates/FEDORA-2018-0d8506aba4
selinux-policy-3.13.1-283.21.fc27 has been pushed to the Fedora 27 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2018-0d8506aba4
selinux-policy-3.13.1-283.21.fc27 has been pushed to the Fedora 27 stable repository. If problems still persist, please make note of it in this bug report.