See summary :) denied { create } for pid=12870 comm="collectd" scontext=system_u:system_r:collectd_t:s0 tcontext=system_u:system_r:collectd_t:s0 tclass=netlink_generic_socket this happens when starting collectd on F31 (possibly depending on collectd config, I'm seeing it on infra hosts). It seems associated with this error in the collectd log: collectd[12870]: utils_taskstats: mnl_socket_open(NETLINK_GENERIC) = Permission denied
commit 787fa45a8ceadb5e77e59b9ed4fbf899a4b23064 (HEAD -> rawhide) Author: Lukas Vrabec <lvrabec> Date: Wed Oct 30 23:03:19 2019 +0100 Allow collectd_t domain to create netlink_generic_socket sockets
FEDORA-2019-aec8f7ab50 has been submitted as an update to Fedora 31. https://bodhi.fedoraproject.org/updates/FEDORA-2019-aec8f7ab50
selinux-policy-3.14.4-40.fc31 has been pushed to the Fedora 31 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2019-aec8f7ab50
selinux-policy-3.14.4-40.fc31 has been pushed to the Fedora 31 stable repository. If problems still persist, please make note of it in this bug report.