stable

selinux-policy-3.13.1-191.12.fc24
FEDORA-2016-b37e51176b created by lvrabec 5 years ago for Fedora 24

More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=792104

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2016-b37e51176b

This update has been submitted for testing by lvrabec.

5 years ago
User Icon sekidde commented & provided feedback 5 years ago
karma

This policy update works!

BZ#1306243
BZ#1323177
BZ#1339641
BZ#1367279
BZ#1367393

This update has been pushed to testing.

5 years ago
User Icon bojan commented & provided feedback 5 years ago
karma

Seems to work on x86_64 here.

User Icon mikhail provided feedback 5 years ago
karma
BZ#1367393
User Icon dhgutteridge commented & provided feedback 5 years ago
karma

No regressions noted.

User Icon keramidas commented & provided feedback 5 years ago
karma

No regressions noted

This update has been submitted for stable by bodhi.

5 years ago
User Icon em3rson commented & provided feedback 5 years ago
karma

works

User Icon lantw44 commented & provided feedback 5 years ago
karma

I cannot start virtual machines after installing this update.

$ virsh -c qemu:///system start <vm>
error: Failed to start domain <vm>
error: SELinux policy denies access.

Systemd journal:

audit: USER_AVC pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='avc:  denied  { start } for auid=n/a uid=0 gid=0 cmdline="/usr/lib/systemd/systemd-machined" scontext=system_u:system_r:systemd_machined_t:s0 tcontext=system_u:system_r:init_t:s0 tclass=system exe="/usr/lib/systemd/systemd" sauid=0 hostname=? addr=? terminal=?'
systemd-machined: Failed to start machine scope: Access denied
libvirtd: SELinux policy denies access.

selinux-policy-3.13.1-191.10.fc24 doesn't have this problem.

User Icon dhgutteridge commented & provided feedback 5 years ago

@lantw44: I don't see this issue when running a virtual machine via Gnome Boxes -- I mention this in case it helps narrow possible problem areas down (but I'm out of my depth here).

User Icon dhgutteridge commented & provided feedback 5 years ago
karma

I can duplicate @lantw44's problem with virtual machines, in my case using virt-manager: it won't let me create a new VM, saying SELinux disallows this. And as with @lantw44, downgrading to selinux-policy-3.13.1-191.10.fc24 solves the problem. Reversing my earlier karma.

This update has been pushed to stable.

5 years ago
User Icon dhgutteridge commented & provided feedback 5 years ago

I couldn't find an existing bug for the virtualization blockage, so I've opened #1368745.

User Icon ad7d commented & provided feedback 5 years ago

Broke starting VMs in virt-manager.

Related bug: #1368745

User Icon vvro commented & provided feedback 5 years ago

I confirm that it breaks VMs starting

User Icon technojoe commented & provided feedback 5 years ago
karma

Breaks VM from starting in virt-manager. Related bug: #1368745

User Icon urbenlegend commented & provided feedback 5 years ago
karma

Breaks virt-manager

User Icon devhen commented & provided feedback 5 years ago
karma

same. breaks virsh/virt-manager.

User Icon frieben commented & provided feedback 5 years ago
karma

This update does not fix bug 1337333 even though its (unpushed) precursor package selinux-policy-3.13.1-191.10.fc24 was advertised as doing that.

Please login to add feedback.

Metadata
Type
bugfix
Karma
1
Signed
Content Type
RPM
Test Gating
Builds
1
selinux-policy-3.13.1-191.12.fc24
Settings
Unstable by Karma
-3
Stable by Karma
6
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago

Automated Test Results

Copyright © 2007-2022 Red Hat, Inc. and others.

Running bodhi-server 6.0.0 on bodhi-web-8-b5rrb.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy