Description of problem: After installing abrt-1.1.2-1.fc14.x86_64 and rebooting, abrtd fails to start: May 18 21:58:56 tlondon abrtd: Can't create '/var/spool/abrt': Permission denied May 18 21:58:56 tlondon kernel: type=1400 audit(1274245136.943:26635): avc: denied { write } for pid=4919 comm="abrtd" name="spool" dev=dm-0 ino=5332994 scontext=unconfined_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_spool_t:s0 tclass=dir May 18 21:58:56 tlondon kernel: type=1400 audit(1274245136.944:26636): avc: denied { write } for pid=4919 comm="abrtd" name="spool" dev=dm-0 ino=5332994 scontext=unconfined_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_spool_t:s0 tclass=dir And on the following reboot: May 19 06:02:09 tlondon abrtd: Can't create '/var/spool/abrt': Permission denied Putting system into permissive mode and running 'service abrtd start', I see: May 19 06:15:45 tlondon kernel: type=1400 audit(1274274945.223:27089): avc: denied { write } for pid=2413 comm="abrtd" name="spool" dev=dm-0 ino=5332994 scontext=unconfined_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_spool_t:s0 tclass=dir May 19 06:15:45 tlondon kernel: type=1400 audit(1274274945.223:27090): avc: denied { add_name } for pid=2413 comm="abrtd" name="abrt" scontext=unconfined_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_spool_t:s0 tclass=dir May 19 06:15:45 tlondon kernel: type=1400 audit(1274274945.240:27091): avc: denied { create } for pid=2413 comm="abrtd" name="abrt" scontext=unconfined_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:var_t:s0 tclass=lnk_file Looks like abrtd wants: #============= abrt_t ============== #!!!! The source type 'abrt_t' can write to a 'dir' of the following types: # abrt_var_log_t, rpm_var_run_t, abrt_var_run_t, tmp_t, var_t, abrt_tmp_t, var_run_t, rpm_var_cache_t, abrt_var_cache_t, var_log_t, root_t allow abrt_t var_spool_t:dir { write add_name }; allow abrt_t var_t:lnk_file create; Version-Release number of selected component (if applicable): abrt-1.1.2-1.fc14.x86_64 How reproducible: Every time abrtd starts Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Should have added selinux-policy version: selinux-policy-3.7.19-17.fc13.noarch
Tom, it should have been relabeled. restorecon -R -v /var/cache/abrt Should fix.
Believe this version moved the files from /var/cache/abrt to /var/spool/abrt.
*** Bug 594731 has been marked as a duplicate of this bug. ***
Please try this build: http://koji.fedoraproject.org/koji/taskinfo?taskID=2201357
*** This bug has been marked as a duplicate of bug 593906 ***