Description of problem: The following selinux denial was found on f17. My guess is this is causeed by changes in the tomcat6 scripts. fs_getattr_xattr_fs($1_t) Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Pushed to dogtag 9 master and dogtag 10 master. The builds now use pki-core-selinux-f17-1.patch instead of pki-core-selinux-f17.patch bash-3.2$ diff pki-core-selinux-f17.patch pki-core-selinux-f17-1.patch 5c5 < @@ -206,6 +206,20 @@ template(`pki_ca_template',` --- > @@ -206,6 +206,21 @@ template(`pki_ca_template',` 16a17 > + fs_getattr_xattr_fs($1_t) 32c33 < +policy_module(pki,10.0.3) --- > +policy_module(pki,10.0.4) -bash-3.2$ diff pki-core-selinux-Dogtag-9-f17.patch pki-core-selinux-Dogtag-9-f17-1.patch 5c5 < @@ -206,6 +206,20 @@ template(`pki_ca_template',` --- > @@ -206,6 +206,21 @@ template(`pki_ca_template',` 16a17 > + fs_getattr_xattr_fs($1_t) 32c33 < +policy_module(pki,9.0.3) --- > +policy_module(pki,9.0.4)