Description of problem: I get an AVC denial when I try to start the ipsec service after performing a yum install openswan. http://fpaste.org/paste/5371 Steps to Reproduce: 1. yum install openswan 2. servce ipsec restart Additional info: # find / -inum 17776668 -print /var/tmp
Created attachment 334408 [details] Alert Text Alert text as an attachment.
Why is openswan using /var/tmp? If it needs to use temporary files it should be using /var/run/ /var/racoon(/.*)? gen_context(system_u:object_r:ipsec_var_ run_t,s0) /var/run/pluto(/.*)? gen_context(system_u:object_r:ipsec_var_ run_t,s0)
This bug appears to have been reported against 'rawhide' during the Fedora 11 development cycle. Changing version to '11'. More information and reason for this action is here: http://fedoraproject.org/wiki/BugZappers/HouseKeeping
This is tested in the latest Openswan verison, and the issue does not appear now. So I am closing this, and please reopen if you see this issue again. Thanks for reporting the issue.