Hide Forgot
Using OpenLMI providers, I get AVC: type=SYSCALL msg=audit(1377000039.023:1500): arch=c000003e syscall=21 success=no exit=-13 a0=7f6e716a5080 a1=2 a2=7f6e6d197788 a3=7fffcf36aac0 items=0 ppid=1 pid=8084 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 ses=4294967295 tty=(none) comm="cimprovagt" exe="/usr/libexec/pegasus/cimprovagt" subj=system_u:system_r:pegasus_openlmi_storage_t:s0 key=(null) type=AVC msg=audit(1377000039.023:1500): avc: denied { write } for pid=8084 comm="cimprovagt" name="trace" dev="vda3" ino=261963 scontext=system_u:system_r:pegasus_openlmi_storage_t:s0 tcontext=system_u:object_r:pegasus_data_t:s0 tclass=dir This is probably write to /var/lib/Pegasus/cache/trace/. All Pegasus providers (incl. all OpenLMI providers) need to have write access there, it's for trace files. Version-Release number of selected component (if applicable): selinux-policy-targeted-3.12.1-70.fc20.noarch (This bug applies also to Rawhide)
commit baf67b7100188318fa3078937a538ae4c2f7568d Author: Miroslav Grepl <mgrepl> Date: Tue Aug 20 14:29:15 2013 +0200 Allow OpenLMI providers to manage pegasus_data_t
This request was resolved in Red Hat Enterprise Linux 7.0. Contact your manager or support representative in case you have further questions about the request.