Red Hat Bugzilla – Bug 998974
setsebool prints bad nonexisting-boolean error message, only once after permanent booleans change
Last modified: 2014-09-30 19:35:22 EDT
Description of problem: When trying to permanently change nonexisting boolean, following error message is shown: "Failed to change boolean xyz: Success" But it happens only once after some other correct permanent boolean change: ###### correct permanent change # setsebool -P ftp_home_dir 1 ###### Trying to change non-existing boolean, bad error only once: # setsebool -P xyz=1 Failed to change boolean xyz: Success # setsebool -P xyz=1 Failed to change boolean xyz: No such file or directory # setsebool -P xyz=1 Failed to change boolean xyz: No such file or directory ###### correct permanent change # setsebool -P ftp_home_dir 0 ###### Trying to change non-existing boolean: # setsebool -P xyz=1 Failed to change boolean xyz: Success # setsebool -P xyz=1 Failed to change boolean xyz: No such file or directory Version-Release number of selected component (if applicable): policycoreutils-2.0.83-19.32.el6.x86_64
We could change to have #setsebool -P aa=1 Could not change boolean aa #echo $? 255 #setsebool -P ftp_home_dir 0 #echo $? 0 #setsebool -P aa=1 Could not change boolean aa #echo $? 255 So we won't see the issue which Michal described.
That is strange, why does it happen?
It looks it also happens on Fedora. sh-4.2# setsebool -P aa=1 Failed to change boolean aa: No such file or directory sh-4.2# setsebool -P ftp_home_dir 0 sh-4.2# setsebool -P aa=1 Failed to change boolean aa: Success Need to try to do more debugging.
This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux release for currently deployed products. This request is not yet committed for inclusion in a release.
Fixed in policycoreutils-2.0.83-19.35.el6
*** Bug 1008851 has been marked as a duplicate of this bug. ***
*** Bug 1008790 has been marked as a duplicate of this bug. ***
# rpm -q policycoreutils policycoreutils-2.0.83-19.35.el6.x86_64 # setsebool -P aa=1 Boolean aa is not defined # getsebool ftp_home_dir ftp_home_dir --> off # setsebool -P ftp_home_dir 1 # getsebool ftp_home_dir ftp_home_dir --> on
(In reply to Miroslav Grepl from comment #12) > # rpm -q policycoreutils > policycoreutils-2.0.83-19.35.el6.x86_64 > > # setsebool -P aa=1 > Boolean aa is not defined > > # getsebool ftp_home_dir > ftp_home_dir --> off > # setsebool -P ftp_home_dir 1 > # getsebool ftp_home_dir > ftp_home_dir --> on For QA.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-1608.html