Description of problem: # getenforce Enforcing # groupadd -g 1001 testaccount # useradd -u 1001 -g 1001 -m testaccount useradd: cannot open /etc/group # setenforce Permissive # useradd -u 1001 -g 1001 -m testaccount # rpm -qf /usr/sbin/useradd shadow-utils-4.1.5-2.fc18.x86_64 # ls -lZ /etc/group* -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/group -rw-r--r--. root root system_u:object_r:passwd_file_t:s0 /etc/group- # ls -lZ /etc/passwd* -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/passwd -rw-r--r--. root root system_u:object_r:passwd_file_t:s0 /etc/passwd- -rw-r--r--. root root system_u:object_r:etc_t:s0 /etc/passwdqc.conf Version-Release number of selected component (if applicable): * selinux-policy-3.10.0-104.fc17.noarch How reproducible: * Once. Additional info: This is an original F16 virtual machine which was updated to F17 + Rawhide using the instructions here: https://fedoraproject.org/wiki/Upgrading_Fedora_using_yum#Fedora_16_-.3E_Fedora_17
restorecon -R -v /etc Should fix. Miroslav, maybe we need to do. restorecon /etc/group /etc/passwd in post install.
Probably yes to avoid these issues.
So it's fixed? In which case the resolution should be CURRENTRELEASE. Or you won't fix it, in which case the resolution should be WONTFIX.
We added some fixes to F17/F18 to make this working to fix this issue. You are right, it should be closed as CURRENTRELEASE.