FEDORA-2017-58233b1a16

enhancement update in Fedora 26 for selinux-policy

Status: stable a year ago

Update contains fixes for all blockers for F26.

Comments 13

This update has been submitted for testing by lvrabec.

Seems to break hostnamectl set-hostname: https://bugzilla.redhat.com/show_bug.cgi?id=1433555

karma: -1 #1427392: +1 #1411360: +1 #1414910: +1 #1413387: +1

lvrabec edited this update.

New build(s):

  • selinux-policy-3.13.1-246.fc26

Removed build(s):

  • selinux-policy-3.13.1-245.fc26

This update has been pushed to testing.

Works great! LGTM! =)

karma: +1
karma: +1 critpath: +1 #1411360: +1 #1433555: +1

No regressions

karma: +1

246 solves the set-hostname problem indeed.

karma: +1 critpath: +1 #1427392: +1 #1411360: +1 #1414910: +1 #1433555: +1
karma: +1 critpath: +1 #1427392: +1 #1411360: +1 #1429164: +1 #1427312: -1 #1414910: +1 #1413387: +1 #1433555: +1

This is pretty well-tested by now and fixes a bunch of AVCs that are commonly encountered, so let's push it.

This update has been submitted for stable by adamwill.

This update has been pushed to stable.

karma: +1 critpath: +1 #1427392: +1 #1411360: +1 #1429164: +1 #1414910: +1 #1433555: +1

Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown.

-1 0 +1 Feedback Guidelines
#1427392 SELinux is preventing (-localed) from mounton access on the file /proc/mtrr.
#1411360 SELinux is preventing (ostnamed) from 'mounton' accesses on the file /proc/mtrr.
#1429164 SELinux is preventing abrt-dump-journ from 'write' accesses on the sock_file nss.
#1427312 SELinux is preventing /usr/lib/systemd/systemd from 'mounton' accesses on the directory /usr/lib/modules.
#1414910 SELinux is preventing gnome-shell from 'execute' accesses on the file 2F7661722F6C69622F67646D2F23333932363239202864656C6574656429.
#1413387 SELinux is preventing spice-vdagentd from 'getattr' accesses on the filesystem /sys/fs/cgroup/systemd.
#1433555 SELinux is preventing systemd-hostnam from 'create' accesses on the file .#hostnameC0Zq0X.
Does the system's basic functionality continue to work after this update?
Is the update generally functional?
Content Type
RPM
Status
stable
Test Gating Status
Tests not running
Submitted by
Update Type
enhancement
Karma
+6
stable threshold: 7
unstable threshold: -3
Autopush
Enabled
Dates
submitted a year ago
in testing a year ago
in stable a year ago
modified a year ago

Related Bugs 7

0+2 #1427392 SELinux is preventing (-localed) from mounton access on the file /proc/mtrr.
0+3 #1411360 SELinux is preventing (ostnamed) from 'mounton' accesses on the file /proc/mtrr.
0+2 #1429164 SELinux is preventing abrt-dump-journ from 'write' accesses on the sock_file nss.
-10 #1427312 SELinux is preventing /usr/lib/systemd/systemd from 'mounton' accesses on the directory /usr/lib/modules.
0+2 #1414910 SELinux is preventing gnome-shell from 'execute' accesses on the file 2F7661722F6C69622F67646D2F23333932363239202864656C6574656429.
0+1 #1413387 SELinux is preventing spice-vdagentd from 'getattr' accesses on the filesystem /sys/fs/cgroup/systemd.
0+3 #1433555 SELinux is preventing systemd-hostnam from 'create' accesses on the file .#hostnameC0Zq0X.

Automated Test Results