Description of problem: I'm starting to run amanda 2.5.1 because of problems introduce with releasing tar 1.5.91 to FC5, which may cause 2.5.1 to be released for FC5. I ran into the following new avc denials which will need fixing: audit(1159305833.612:1332): avc: denied { create } for pid=16542 comm="amandad" name="amandad" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:object_r:amanda_log_t:s0 tclass=dir audit(1159301717.351:195): avc: denied { create } for pid=11723 comm="sendsize" name="client" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:object_r:amanda_log_t:s0 tclass=dir amanda now creates directories in /var/log/amanda I'll be doing a full run tonight. We'll see if anything else pops up. Version-Release number of selected component (if applicable): selinux-policy-2.3.7-2.fc5
Fixed in selinux-policy-2.3.16-6
Some others showing up: Nov 1 21:32:47 saga kernel: audit(1162441967.934:45): avc: denied { create } for pid=19009 comm="tar" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:system_r:amanda_t:s0 tclass=netlink_route_socket Nov 1 21:32:47 saga kernel: audit(1162441967.934:46): avc: denied { bind } for pid=19009 comm="tar" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:system_r:amanda_t:s0 tclass=netlink_route_socket Nov 1 21:32:47 saga kernel: audit(1162441967.934:47): avc: denied { getattr } for pid=19009 comm="tar" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:system_r:amanda_t:s0 tclass=netlink_route_socket Nov 1 21:32:47 saga kernel: audit(1162441967.934:48): avc: denied { write } for pid=19009 comm="tar" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:system_r:amanda_t:s0 tclass=netlink_route_socket Nov 1 21:32:47 saga kernel: audit(1162441967.934:49): avc: denied { nlmsg_read } for pid=19009 comm="tar" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:system_r:amanda_t:s0 tclass=netlink_route_socket Nov 1 21:32:47 saga kernel: audit(1162441967.934:50): avc: denied { read } for pid=19009 comm="tar" scontext=system_u:system_r:amanda_t:s0 tcontext=system_u:system_r:amanda_t:s0 tclass=netlink_route_socket
Not seeing any more messages with 2.5.1p1 and FC6.