From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050513 Fedora/1.0.4-1.3.1 Firefox/1.0.4 Description of problem: After updating selinux-policy-targeted to 1.17.30-3.9 in FC3 problems reported in Bug 160567 disappear but this time dhcpd does not start. Version-Release number of selected component (if applicable): selinux-policy-targeted 1.17.30-3.9 How reproducible: Always Steps to Reproduce: 1. install selinux-policy-targeted 1.17.30-3.9 2. reboot 3. get avc messages when system tries to start dhcpd at boot Actual Results: dhcpd does not start Expected Results: dhcpd should start correctly Additional info:
Message is: audit(1119008172.421:0): avc: denied { name_bind } for pid=4302 exe=/usr/sbin/dhcpd src=67 scontext=user_u:system_r:dhcpd_t tcontext=system_u:object_r:reserved_port_t tclass=udp_socket
The fix is probably in bug 160430.
selinux-policy-targeted 1.17.30-3.13 fixed above error, but dhcpd still cannot start: /usr/sbin/dhcpd: error while loading shared libraries: libc.so.6: failed to map segment from shared object: Permission denied I ran fixfiles restore, didn't help. selinux message is: audit(1119895248.069:0): avc: denied { execute } for pid=19031 comm=dhcpd path=/lib/tls/libc-2.3.5.so dev=md0 ino=999670 scontext=root:system_r:dhcpd_t tcontext=system_u:object_r:lib_t tclass=file
This problem appears to be fixed in selinux-policy-targeted.noarch 1.17.30-3.15
Yep, everything works fine now - excellent work!