Description of problem: happens every time I save a picture to documents folder or modify a picture SELinux is preventing tumblerd from 'write' accesses on the sock_file socket. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that tumblerd should be allowed write access on the socket sock_file by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'tumblerd' --raw | audit2allow -M my-tumblerd # semodule -X 300 -i my-tumblerd.pp Additional Information: Source Context unconfined_u:unconfined_r:thumb_t:s0-s0:c0.c1023 Target Context system_u:object_r:syslogd_var_run_t:s0 Target Objects socket [ sock_file ] Source tumblerd Source Path tumblerd Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.14.2-44.fc29.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Permissive Host Name (removed) Platform Linux (removed) 4.20.0-0.rc7.git2.2.fc30.x86_64 #1 SMP Thu Dec 20 23:13:27 UTC 2018 x86_64 x86_64 Alert Count 1 First Seen 2019-01-03 03:04:07 EAT Last Seen 2019-01-03 03:04:07 EAT Local ID 9cbe1c96-61df-4084-b6cb-ffb525b71bb0 Raw Audit Messages type=AVC msg=audit(1546473847.781:2797): avc: denied { write } for pid=5976 comm="tumblerd" name="socket" dev="tmpfs" ino=12484 scontext=unconfined_u:unconfined_r:thumb_t:s0-s0:c0.c1023 tcontext=system_u:object_r:syslogd_var_run_t:s0 tclass=sock_file permissive=1 Hash: tumblerd,thumb_t,syslogd_var_run_t,sock_file,write Version-Release number of selected component: selinux-policy-3.14.2-44.fc29.noarch Additional info: component: selinux-policy reporter: libreport-2.9.7 hashmarkername: setroubleshoot kernel: 4.20.0-0.rc7.git2.2.fc30.x86_64 type: libreport Potential duplicate: bug 1398849
Description of problem: appears by itself at logon Version-Release number of selected component: selinux-policy-3.14.2-44.fc29.noarch Additional info: reporter: libreport-2.9.7 hashmarkername: setroubleshoot kernel: 4.20.0-1.fc30.x86_64 type: libreport
commit 7f67167a24e7d27ba81b6e8a019cddcf9ca19c9f Author: Lukas Vrabec <lvrabec> Date: Wed Dec 12 16:48:22 2018 +0100 Allow thumb_t domain send logging to syslog/journal BZ(1655323)
selinux-policy-3.14.2-46.fc29 has been submitted as an update to Fedora 29. https://bodhi.fedoraproject.org/updates/FEDORA-2019-6a20cfef61
selinux-policy-3.14.2-46.fc29 has been pushed to the Fedora 29 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2019-6a20cfef61
selinux-policy-3.14.2-46.fc29 has been pushed to the Fedora 29 stable repository. If problems still persist, please make note of it in this bug report.