Description of problem: With the latest version of the SELinux policy installed, vpnc appears to hang when I run it. Under strace, I can tell that it attempted to prompt me for information which wasn't in its configuration file, and is waiting for me to respond, but the prompt didn't make it to the console (/dev/tty2). Version-Release number of selected component (if applicable): 2.2.20-1 How reproducible: Always Steps to Reproduce: 1. Install vpnc. 2. Log in on a text console as 'root'. 3. Run vpnc. Actual results: Nothing happens. The command appears to hang. Expected results: vpnc should prompt me for the address of my VPN concentrator. Additional info: This appears to have broken somewhere between 2.2.12 and 2.2.17. The avc denials which are logged are all for this av: type=AVC msg=audit(1140722662.992:753): avc: denied { use } for pid=31422 comm="vpnc" name="tty2" dev=tmpfs ino=1199 scontext=root:system_r:vpnc_t:s0-s0:c0.c255 tcontext=system_u:system_r:local_login_t:s0-s0:c0.c255 tclass=fd
Fixed in Fedora/selinux-policy-2.2.21-2.noarch.rpm
Confirmed.