{"update": {"autokarma": false, "autotime": false, "stable_karma": 4, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "More info: https://koji.fedoraproject.org/koji/buildinfo?buildID=1046985\n", "type": "bugfix", "status": "stable", "request": null, "severity": "high", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2018-02-20 11:14:19", "date_modified": "2018-02-20 13:36:16", "date_approved": null, "date_testing": "2018-02-20 18:17:40", "date_stable": "2018-02-27 17:16:42", "alias": "FEDORA-2018-a9711c96b2", "test_gating_status": "passed", "from_tag": null, "date_pushed": "2018-02-27 17:16:42", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2018-a9711c96b2", "title": "selinux-policy-3.13.1-283.26.fc27", "version_hash": "b3aa46b0284b7fb5e2bbe0016d59245ebd0080d4", "release": {"name": "F27", "long_name": "Fedora 27", "version": "27", "id_prefix": "FEDORA", "branch": "f27", "dist_tag": "f27", "stable_tag": "f27-updates", "testing_tag": "f27-updates-testing", "candidate_tag": "f27-updates-candidate", "pending_signing_tag": "f27-signing-pending", "pending_testing_tag": "f27-updates-testing-pending", "pending_stable_tag": "f27-updates-pending", "override_tag": "f27-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "lvrabec", "email": "lvrabec@redhat.com", "id": 848, "avatar": "https://seccdn.libravatar.org/avatar/fc5620e4b2cb6ce528cc5b9c4576b4421a9c47f14eeb1e764130d848219d8048?s=24&d=retro", "openid": "lvrabec.id.fedoraproject.org", "groups": [{"name": "packager"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by lvrabec. ", "timestamp": "2018-02-20 11:14:19", "update_id": 107788, "user_id": 91, "id": 733810, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "lvrabec edited this update.", "timestamp": "2018-02-20 13:36:15", "update_id": 107788, "user_id": 91, "id": 733884, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2018-02-20 18:21:22", "update_id": 107788, "user_id": 91, "id": 734305, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "No regressions found", "timestamp": "2018-02-21 08:28:37", "update_id": 107788, "user_id": 3020, "id": 734433, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "mzink", "email": "mzink@redhat.com", "id": 3020, "avatar": "https://seccdn.libravatar.org/avatar/6c45bf563c6afce3451a0400e9d90e3dcbd0f0fc1390f34c700dfc31b41e7980?s=24&d=retro", "openid": "mzink.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 1, "karma_critpath": 0, "text": "No regressions noticed.", "timestamp": "2018-02-21 21:04:24", "update_id": 107788, "user_id": 198, "id": 734749, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bojan", "email": "bojan@rexursive.com", "id": 198, "avatar": "https://seccdn.libravatar.org/avatar/adb4c3f28bd6969871988f992b1bf71e404f03e3570fbfa0fc9bd7d0bf0003f8?s=24&d=retro", "openid": "bojan.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 1, "karma_critpath": 0, "text": "No regressions found", "timestamp": "2018-02-22 11:16:18", "update_id": 107788, "user_id": 208, "id": 734891, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "renault", "email": "cacouret.renault@gmail.com", "id": 208, "avatar": "https://seccdn.libravatar.org/avatar/aa62a9ab252e71079b0a269b65512d76baf98b7c2c24f15cfd25e6b8f0839c1a?s=24&d=retro", "openid": "renault.id.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "l10n-commits"}, {"name": "gitmuffin"}]}}, {"karma": -1, "karma_critpath": 0, "text": "Upon applying this update, I was unable to add an additional port for SSH:\n\n# /sbin/semanage port -a -t ssh_port_t -p tcp 1234\nlibsepol.context_from_record: type pkcs_slotd_unit_file_t is not defined\nlibsepol.context_from_record: could not create context structure\nlibsepol.context_from_string: could not create context structure\nlibsepol.sepol_context_to_sid: could not convert system_u:object_r:pkcs_slotd_unit_file_t:s0 to sid\ninvalid context system_u:object_r:pkcs_slotd_unit_file_t:s0\nlibsemanage.semanage_validate_and_compile_fcontexts: setfiles returned error code 255.\nOSError: [Errno 0] Error\n\nLooking at `sudo dnf history info ` showed a number of errors during installation:\n\n 1 neverallow check failed at /var/lib/selinux/targeted/tmp/modules/100/base/cil:8980\n 2 (neverallow base_typeattr_8 self (capability (sys_module)))\n 3 \n 4 allow at /var/lib/selinux/targeted/tmp/modules/300/systemdmodules-syscapability/cil:2\n 5 (allow init_t self (capability (sys_module)))\n 6 \n 7 Failed to generate binary\n\n\nUpon downgrading back to 283.24, everything worked again, no install errors.", "timestamp": "2018-02-22 20:24:45", "update_id": 107788, "user_id": 3822, "id": 735153, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "stevestorey", "email": "sstorey@gmail.com", "id": 3822, "avatar": "https://seccdn.libravatar.org/avatar/ef38ebd777f3b039166956de4caedcf2eff763eec9fd7d878da33285d0254c28?s=24&d=retro", "openid": "stevestorey.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.", "timestamp": "2018-02-22 20:24:46", "update_id": 107788, "user_id": 91, "id": 735154, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "EDIT: Sorry, didn't realise this was a markdown field. I'll repeat the details above, without additional karma changes for readability:\n\n\n\nUpon applying this update, I was unable to add an additional port for SSH:\n```\n# /sbin/semanage port -a -t ssh_port_t -p tcp 1234\nlibsepol.context_from_record: type pkcs_slotd_unit_file_t is not defined\nlibsepol.context_from_record: could not create context structure\nlibsepol.context_from_string: could not create context structure\nlibsepol.sepol_context_to_sid: could not convert system_u:object_r:pkcs_slotd_unit_file_t:s0 to sid\ninvalid context system_u:object_r:pkcs_slotd_unit_file_t:s0\nlibsemanage.semanage_validate_and_compile_fcontexts: setfiles returned error code 255.\nOSError: [Errno 0] Error\n```\n\nLooking at `sudo dnf history info ` showed a number of errors during installation:\n\n```\n 1 neverallow check failed at /var/lib/selinux/targeted/tmp/modules/100/base/cil:8980\n 2 (neverallow base_typeattr_8 self (capability (sys_module)))\n 3 \n 4 allow at /var/lib/selinux/targeted/tmp/modules/300/systemdmodules-syscapability/cil:2\n 5 (allow init_t self (capability (sys_module)))\n 6 \n 7 Failed to generate binary\n 8 semodule: Failed!\n(and repeat 6 times)\n```\n\nUpon downgrading back to 283.24, everything worked again, no install errors.\n", "timestamp": "2018-02-22 20:29:35", "update_id": 107788, "user_id": 3822, "id": 735155, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "stevestorey", "email": "sstorey@gmail.com", "id": 3822, "avatar": "https://seccdn.libravatar.org/avatar/ef38ebd777f3b039166956de4caedcf2eff763eec9fd7d878da33285d0254c28?s=24&d=retro", "openid": "stevestorey.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 0, "karma_critpath": 0, "text": "@stevestorey, \n\ntcp port 1234 is defined as monopd_port_t and commit for this is in repo from 2005-09-13 so, you cannot use -a in semanage becuase it's already defined. \n\nlvrabec@lvrabec-workstation ~ \u00bb rpm -q selinux-policy\nselinux-policy-3.13.1-283.24.fc27.noarch\nlvrabec@lvrabec-workstation ~ \u00bb sudo semanage port -m -t ssh_port_t -p tcp 1234 1 \u21b5\nlvrabec@lvrabec-workstation ~ \u00bb sudo semanage port -l | grep 1234 \nmonopd_port_t tcp 1234\nssh_port_t tcp 1234, 22\n \nAfter update...\n\nlvrabec@lvrabec-workstation ~ \u00bb rpm -q selinux-policy \nselinux-policy-3.13.1-283.26.fc27.noarch\nlvrabec@lvrabec-workstation ~ \u00bb sudo semanage port -m -t ssh_port_t -p tcp 1234 \nlvrabec@lvrabec-workstation ~ \u00bb sudo semanage port -l | grep 1234 \nmonopd_port_t tcp 1234\nssh_port_t tcp 1234, 22\n\nIt looks like you have some custom modifications on your system (e.g: systemdmodules-syscapability) you are stopped by neverallow rule. \n\nThis is not issue in selinux-policy update but on your system. \n\nLukas.\n\n\n", "timestamp": "2018-02-23 10:54:53", "update_id": 107788, "user_id": 848, "id": 735220, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "lvrabec", "email": "lvrabec@redhat.com", "id": 848, "avatar": "https://seccdn.libravatar.org/avatar/fc5620e4b2cb6ce528cc5b9c4576b4421a9c47f14eeb1e764130d848219d8048?s=24&d=retro", "openid": "lvrabec.id.fedoraproject.org", "groups": [{"name": "packager"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Works for me.", "timestamp": "2018-02-23 12:56:08", "update_id": 107788, "user_id": 536, "id": 735246, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "mhayden", "email": "mhayden@redhat.com", "id": 536, "avatar": "https://seccdn.libravatar.org/avatar/9f9c7ca41ea68469600931af4193d0dc1dcb47d3cdbd481fa39fbaae417f4f2f?s=24&d=retro", "openid": "mhayden.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitfedora-security-team"}, {"name": "aws-fedora-ci"}, {"name": "cloud-sig"}, {"name": "rhel-lightspeed"}]}}, {"karma": 1, "karma_critpath": 1, "text": "looks good", "timestamp": "2018-02-23 13:54:47", "update_id": 107788, "user_id": 1178, "id": 735253, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "jjelen", "email": "jjelen@redhat.com", "id": 1178, "avatar": "https://seccdn.libravatar.org/avatar/148def0f2ca15284cb1cf58ff223f5754929b232f2f893ee8da4d0341a395ca6?s=24&d=retro", "openid": "jjelen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "crypto-team"}]}}, {"karma": 1, "karma_critpath": 0, "text": "looks good", "timestamp": "2018-02-23 14:50:01", "update_id": 107788, "user_id": 3508, "id": 735255, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "alciregi", "email": "alciregi@posteo.net", "id": 3508, "avatar": "https://seccdn.libravatar.org/avatar/614b820b4858bf877566255c8126286f39536cf4cc1a85010923262801aa563e?s=24&d=retro", "openid": "alciregi.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ask-fedora"}, {"name": "cvsl10n"}, {"name": "respins-sig"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "signed_fpca"}, {"name": "advocates"}, {"name": "ambassadors"}, {"name": "fedora-join"}, {"name": "fedora-contributor"}, {"name": "ipausers"}, {"name": "neuro-sig"}, {"name": "qa"}, {"name": "fedorabugs"}, {"name": "common-issues-triage"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Right - well firstly, I'm afraid port 1234 wasn't the _real_ port I used (I'd rather not disclose the real port) - I should have made that clear, sorry :( - the port I'm using isn't assigned to any pre-existing rule. But fair enough, if I'm the only person getting this, it must be my config somewhere, I'll have a dig - thank you!", "timestamp": "2018-02-23 17:35:30", "update_id": 107788, "user_id": 3822, "id": 735374, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "stevestorey", "email": "sstorey@gmail.com", "id": 3822, "avatar": "https://seccdn.libravatar.org/avatar/ef38ebd777f3b039166956de4caedcf2eff763eec9fd7d878da33285d0254c28?s=24&d=retro", "openid": "stevestorey.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2018-02-23 22:11:11", "update_id": 107788, "user_id": 739, "id": 735506, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "cserpentis", "email": "cserpentis@gmail.com", "id": 739, "avatar": "https://seccdn.libravatar.org/avatar/a3febfef42f58ed535f3c3a3cf9743653cd774dbb6e4554e2ce7c847d9802b6c?s=24&d=retro", "openid": "cserpentis.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "trust admins"}]}}, {"karma": 0, "karma_critpath": 0, "text": " SELinux is preventing iptables-restor from read access on the file xtables.lock", "timestamp": "2018-02-24 05:25:47", "update_id": 107788, "user_id": 3930, "id": 735530, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "selinux-policy-devel-3.13.1-283.26.fc27.noarch reports:\n``` shell\n/usr/share/selinux/devel/include/contrib/snappy.if: Syntax error on line 260 gen_require [type=GEN_REQ]\n/usr/share/selinux/devel/include/contrib/snappy.if: Syntax error on line 263 ' [type=SQUOTE]\n/usr/share/selinux/devel/include/contrib/snappy.if: Syntax error on line 273 ' [type=SQUOTE]\n```", "timestamp": "2018-02-24 07:36:22", "update_id": 107788, "user_id": 3624, "id": 735541, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "randomvariable", "email": "naadir@randomvariable.co.uk", "id": 3624, "avatar": "https://seccdn.libravatar.org/avatar/0c686c02c22aca3cdfed6e39df04a961ed9db0535aa7180c2b9a25ad704635a1?s=24&d=retro", "openid": "randomvariable.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Works", "timestamp": "2018-02-24 09:09:25", "update_id": 107788, "user_id": 2240, "id": 735548, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "frantisekz", "email": "fzatlouk@redhat.com", "id": 2240, "avatar": "https://seccdn.libravatar.org/avatar/665c5bc41bed444bc5fc8ea32da393449791968f9398dbe8ca045576e0ec52d3?s=24&d=retro", "openid": "frantisekz.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "provenpackager"}, {"name": "fedora-contributor"}, {"name": "qa-admin"}, {"name": "signed_fpca"}, {"name": "sysadmin-qa"}, {"name": "sysadmin"}, {"name": "ambassadors"}, {"name": "advocates"}, {"name": "fedorabugs"}, {"name": "qa"}, {"name": "ipausers"}]}}, {"karma": 1, "karma_critpath": 0, "text": "no regressions noted", "timestamp": "2018-02-25 02:13:58", "update_id": 107788, "user_id": 124, "id": 735777, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "filiperosset", "email": "rosset.filipe@gmail.com", "id": 124, "avatar": "https://seccdn.libravatar.org/avatar/f4394b8fb4c9a99c4b534dc724912fe75a5b87fe15048985ece8388c2441d0ca?s=24&d=retro", "openid": "filiperosset.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "fedora-br"}, {"name": "trust admins"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for batched by lvrabec. ", "timestamp": "2018-02-25 13:31:59", "update_id": 107788, "user_id": 91, "id": 735832, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2018-02-27 03:03:56", "update_id": 107788, "user_id": 91, "id": 736642, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2018-02-27 17:26:35", "update_id": 107788, "user_id": 91, "id": 737079, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "selinux-policy-3.13.1-283.26.fc27", "signed": true, "release_id": 17, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1362118, "title": "Geoclue can\u2019t talk to DNS-SD _nmea-0183._tcp location sources", "security": false, "parent": false, "feedback": []}, {"bug_id": 1379044, "title": "Selinux is preventing mdadm from updating metadata on shutdown. Software raid is broken", "security": false, "parent": false, "feedback": []}, {"bug_id": 1473954, "title": "blueman not allowed to setup bluetooth network", "security": false, "parent": false, "feedback": []}, {"bug_id": 1501331, "title": null, "security": false, "parent": false, "feedback": [{"karma": 0, "comment_id": 696273, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "This update solves #1512783. ", "timestamp": "2017-11-17 22:30:15", "update_id": 102389, "user_id": 3975, "id": 696273, "testcase_feedback": [], "user": {"name": "lars", "email": "lars+fedoraproject.org@gatekeeper.vernetzt.org", "id": 3975, "avatar": "https://seccdn.libravatar.org/avatar/95824aa8140b501c77edf9f27059c20aa4b08eae7f1ddf99ffc22931d159b968?s=24&d=retro", "openid": "lars.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 682259, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "https://bugzilla.redhat.com/show_bug.cgi?id=1505081 seems to be fixed now. I removed my custom module, installed the update, restarted NetworkManager, and it successfully updated systemd-resolved with the DNS info.", "timestamp": "2017-10-25 23:02:40", "update_id": 100511, "user_id": 3939, "id": 682259, "testcase_feedback": [], "user": {"name": "chenxiaolong", "email": "accounts+fedora@chiller3.com", "id": 3939, "avatar": "https://seccdn.libravatar.org/avatar/46e0a3b5d687203fa6798b844d5d83915e6f4ed11a342a6128863e97ed211bb9?s=24&d=retro", "openid": "chenxiaolong.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 683158, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Didn't specifically test any of the changes, but boots fine and no new denials in boot and ordinary use.", "timestamp": "2017-10-27 01:49:37", "update_id": 100511, "user_id": 302, "id": 683158, "testcase_feedback": [], "user": {"name": "adamwill", "email": "awilliam@redhat.com", "id": 302, "avatar": "https://seccdn.libravatar.org/avatar/51720fbb2ec5dfd2bc005ac374a3bfd3190cb8f45f3bb8d6bdf35fb6a051d03b?s=24&d=retro", "openid": "adamwill.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "fedora-contributor"}, {"name": "news"}, {"name": "gittriage"}, {"name": "sysadmin"}, {"name": "gitspin-kickstarts"}, {"name": "signed_fpca"}, {"name": "gitgeneric-release"}, {"name": "yak_farmers"}, {"name": "triagers"}, {"name": "qa"}, {"name": "sysadmin-qa"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "gitmkinitrd"}, {"name": "qa-admin"}, {"name": "aws-qa"}, {"name": "change-wranglers"}, {"name": "fedora-ci-admins"}, {"name": "common-issues-triage"}, {"name": "sysadmin-main"}, {"name": "program-management"}, {"name": "gitfedora-project-schedule"}]}}}, {"karma": 0, "comment_id": 683161, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Didn't specifically test any of the changes, but boots fine and no new denials in boot and ordinary use.", "timestamp": "2017-10-27 01:58:48", "update_id": 100511, "user_id": 302, "id": 683161, "testcase_feedback": [], "user": {"name": "adamwill", "email": "awilliam@redhat.com", "id": 302, "avatar": "https://seccdn.libravatar.org/avatar/51720fbb2ec5dfd2bc005ac374a3bfd3190cb8f45f3bb8d6bdf35fb6a051d03b?s=24&d=retro", "openid": "adamwill.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "fedora-contributor"}, {"name": "news"}, {"name": "gittriage"}, {"name": "sysadmin"}, {"name": "gitspin-kickstarts"}, {"name": "signed_fpca"}, {"name": "gitgeneric-release"}, {"name": "yak_farmers"}, {"name": "triagers"}, {"name": "qa"}, {"name": "sysadmin-qa"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "gitmkinitrd"}, {"name": "qa-admin"}, {"name": "aws-qa"}, {"name": "change-wranglers"}, {"name": "fedora-ci-admins"}, {"name": "common-issues-triage"}, {"name": "sysadmin-main"}, {"name": "program-management"}, {"name": "gitfedora-project-schedule"}]}}}, {"karma": 0, "comment_id": 683328, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "No denials here, seems to work OK.", "timestamp": "2017-10-27 14:36:48", "update_id": 100511, "user_id": 2822, "id": 683328, "testcase_feedback": [], "user": {"name": "coremodule", "email": "gmarr@redhat.com", "id": 2822, "avatar": "https://seccdn.libravatar.org/avatar/3a29bfddb66ab9fff578c56e8f24904b5f457abc356e9599f1c701554fa16591?s=24&d=retro", "openid": "coremodule.id.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "fedora-hams"}, {"name": "advocates"}, {"name": "qa-admin"}, {"name": "iot"}]}}}, {"karma": 0, "comment_id": 683329, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "No denials here, seems to work OK.", "timestamp": "2017-10-27 14:38:43", "update_id": 100511, "user_id": 2822, "id": 683329, "testcase_feedback": [], "user": {"name": "coremodule", "email": "gmarr@redhat.com", "id": 2822, "avatar": "https://seccdn.libravatar.org/avatar/3a29bfddb66ab9fff578c56e8f24904b5f457abc356e9599f1c701554fa16591?s=24&d=retro", "openid": "coremodule.id.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "fedora-hams"}, {"name": "advocates"}, {"name": "qa-admin"}, {"name": "iot"}]}}}, {"karma": 0, "comment_id": 683336, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "System works fine after selinux-policy upgrade.", "timestamp": "2017-10-27 14:52:02", "update_id": 100511, "user_id": 2240, "id": 683336, "testcase_feedback": [], "user": {"name": "frantisekz", "email": "fzatlouk@redhat.com", "id": 2240, "avatar": "https://seccdn.libravatar.org/avatar/665c5bc41bed444bc5fc8ea32da393449791968f9398dbe8ca045576e0ec52d3?s=24&d=retro", "openid": "frantisekz.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "provenpackager"}, {"name": "fedora-contributor"}, {"name": "qa-admin"}, {"name": "signed_fpca"}, {"name": "sysadmin-qa"}, {"name": "sysadmin"}, {"name": "ambassadors"}, {"name": "advocates"}, {"name": "fedorabugs"}, {"name": "qa"}, {"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 683745, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "RH#1503980 nothing changed... Otherwise it's ok :)", "timestamp": "2017-10-28 21:01:35", "update_id": 100511, "user_id": 207, "id": 683745, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 683746, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "RH#1503980 nothing changed... Otherwise it's ok :)", "timestamp": "2017-10-28 21:02:58", "update_id": 100511, "user_id": 207, "id": 683746, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 684282, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "I don't see any of the previous dac_read_search AVCs, so these bugs seem fixed. Otherwise, everything works nicely too.", "timestamp": "2017-10-30 12:03:09", "update_id": 100511, "user_id": 1741, "id": 684282, "testcase_feedback": [], "user": {"name": "goeran", "email": "goeran@uddeborg.se", "id": 1741, "avatar": "https://seccdn.libravatar.org/avatar/ba87fbe3d1e44948ba01fcd69216fc484542ff1c37779ab4ccb8026b9b2a574e?s=24&d=retro", "openid": "goeran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 689117, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "_selinux-policy-3.13.1-283.**15**_ denies permission to allocate RWX Memory:\n\n [LibClamAV] Bytecode: disabling JIT because SELinux is preventing 'execmem' access.", "timestamp": "2017-11-07 21:47:12", "update_id": 100511, "user_id": 3930, "id": 689117, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 689118, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "_selinux-policy-3.13.1-283.**15**_ denies permission to allocate RWX Memory:\n\n [LibClamAV] Bytecode: disabling JIT because SELinux is preventing 'execmem' access.", "timestamp": "2017-11-07 21:49:05", "update_id": 100511, "user_id": 3930, "id": 689118, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 690882, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Sorry, but should clarify that previously described issue with _LibClamAV_ happened just once right after updating _selinux-policy_ from koji.fedoraproject.org and no longer appear after rebooting system :)", "timestamp": "2017-11-10 17:55:43", "update_id": 100511, "user_id": 3930, "id": 690882, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 690883, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Sorry, but should clarify that previously described issue with _LibClamAV_ happened just once right after updating _selinux-policy_ from koji.fedoraproject.org and no longer appear after rebooting system :)", "timestamp": "2017-11-10 17:57:16", "update_id": 100511, "user_id": 3930, "id": 690883, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 695677, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-11-16 15:47:15", "update_id": 102389, "user_id": 94, "id": 695677, "testcase_feedback": [], "user": {"name": "remi", "email": "fedora@famillecollet.com", "id": 94, "avatar": "https://seccdn.libravatar.org/avatar/619d3923bdf71a705e6f65371e59246522f52ad96485c9731408ff28554716cf?s=24&d=retro", "openid": "remi.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}, {"karma": 0, "comment_id": 695678, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "I confirm php-fpm start is now ok (#1502303)", "timestamp": "2017-11-16 15:49:15", "update_id": 102389, "user_id": 94, "id": 695678, "testcase_feedback": [], "user": {"name": "remi", "email": "fedora@famillecollet.com", "id": 94, "avatar": "https://seccdn.libravatar.org/avatar/619d3923bdf71a705e6f65371e59246522f52ad96485c9731408ff28554716cf?s=24&d=retro", "openid": "remi.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}, {"karma": 0, "comment_id": 695808, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "No more \"check engine\" on tilix start", "timestamp": "2017-11-16 18:20:12", "update_id": 102389, "user_id": 2559, "id": 695808, "testcase_feedback": [], "user": {"name": "proski", "email": "plroskin@gmail.com", "id": 2559, "avatar": "https://seccdn.libravatar.org/avatar/530ce01b46b052c872021f67a398d2f32dae176b7e2355af9457c327a0194087?s=24&d=retro", "openid": "proski.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitliveusb-creator"}]}}}, {"karma": 0, "comment_id": 696006, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Still has no default label for _/dev/mqueue_", "timestamp": "2017-11-17 06:58:24", "update_id": 102389, "user_id": 3930, "id": 696006, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 696031, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2017-11-17 08:45:14", "update_id": 102389, "user_id": 3974, "id": 696031, "testcase_feedback": [], "user": {"name": "nyk", "email": "nkudriavtsev@gmail.com", "id": 3974, "avatar": "https://seccdn.libravatar.org/avatar/def969d2c435463076f81218e63c2b7d043bfdefbdc621f6aa847d550d559707?s=24&d=retro", "openid": "nyk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 696032, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-11-17 08:47:45", "update_id": 102389, "user_id": 3974, "id": 696032, "testcase_feedback": [], "user": {"name": "nyk", "email": "nkudriavtsev@gmail.com", "id": 3974, "avatar": "https://seccdn.libravatar.org/avatar/def969d2c435463076f81218e63c2b7d043bfdefbdc621f6aa847d550d559707?s=24&d=retro", "openid": "nyk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 696089, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "This update addresses quite a number of bugs I had on three very different systems, plus a few more, e.g. RHBZ#1482354 as well as some other issues for which there were no bugs filed.", "timestamp": "2017-11-17 15:32:23", "update_id": 102389, "user_id": 367, "id": 696089, "testcase_feedback": [], "user": {"name": "alexpl", "email": "alex.ploumistos@gmail.com", "id": 367, "avatar": "https://seccdn.libravatar.org/avatar/c8ef98b832fe2240130a04ceeec5757c5d3289ad74d259eda7b5c784822c6327?s=24&d=retro", "openid": "alexpl.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "scitech_sig"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 696789, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM", "timestamp": "2017-11-18 23:57:17", "update_id": 102389, "user_id": 1495, "id": 696789, "testcase_feedback": [], "user": {"name": "anassahmed", "email": "anass.1430@gmail.com", "id": 1495, "avatar": "https://seccdn.libravatar.org/avatar/fb38c0a530075eda2d6c2546fff052427b0fdf00fe46f9e56b788067bdfde608?s=24&d=retro", "openid": "anassahmed.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 698759, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "\t[ 6.967575] SELinux: Permission getrlimit in class process not defined in policy.\n\t[ 6.969711] SELinux: Class sctp_socket not defined in policy.\n\t[ 6.971703] SELinux: Class icmp_socket not defined in policy.\n\t[ 6.973675] SELinux: Class ax25_socket not defined in policy.\n\t[ 6.975587] SELinux: Class ipx_socket not defined in policy.\n\t[ 6.977443] SELinux: Class netrom_socket not defined in policy.\n\t[ 6.979247] SELinux: Class atmpvc_socket not defined in policy.\n\t[ 6.980982] SELinux: Class x25_socket not defined in policy.\n\t[ 6.982719] SELinux: Class rose_socket not defined in policy.\n\t[ 6.984466] SELinux: Class decnet_socket not defined in policy.\n\t[ 6.986209] SELinux: Class atmsvc_socket not defined in policy.\n\t[ 6.987887] SELinux: Class rds_socket not defined in policy.\n\t[ 6.989508] SELinux: Class irda_socket not defined in policy.\n\t[ 6.991139] SELinux: Class pppox_socket not defined in policy.\n\t[ 6.992769] SELinux: Class llc_socket not defined in policy.\n\t[ 6.994392] SELinux: Class can_socket not defined in policy.\n\t[ 6.995948] SELinux: Class tipc_socket not defined in policy.\n\t[ 6.997448] SELinux: Class bluetooth_socket not defined in policy.\n\t[ 6.998951] SELinux: Class iucv_socket not defined in policy.\n\t[ 7.000461] SELinux: Class rxrpc_socket not defined in policy.\n\t[ 7.001974] SELinux: Class isdn_socket not defined in policy.\n\t[ 7.003430] SELinux: Class phonet_socket not defined in policy.\n\t[ 7.004834] SELinux: Class ieee802154_socket not defined in policy.\n\t[ 7.006186] SELinux: Class caif_socket not defined in policy.\n\t[ 7.007483] SELinux: Class alg_socket not defined in policy.\n\t[ 7.008724] SELinux: Class nfc_socket not defined in policy.\n\t[ 7.009899] SELinux: Class vsock_socket not defined in policy.\n\t[ 7.011077] SELinux: Class kcm_socket not defined in policy.\n\t[ 7.012198] SELinux: Class qipcrtr_socket not defined in policy.\n\t[ 7.013266] SELinux: Class smc_socket not defined in policy.\n\t[ 7.014334] SELinux: the above unknown classes and permissions will be allowed", "timestamp": "2017-11-22 03:06:56", "update_id": 102389, "user_id": 207, "id": 698759, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 698965, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 1, "text": "Tested the syslog-ng part and it works now fine.", "timestamp": "2017-11-22 09:20:40", "update_id": 102874, "user_id": 1443, "id": 698965, "testcase_feedback": [], "user": {"name": "czanik", "email": "peter@czanik.hu", "id": 1443, "avatar": "https://seccdn.libravatar.org/avatar/e30b54c7a15e5f9d24775dd799d67d29286705d6455c29316c80933e0ae9e4ee?s=24&d=retro", "openid": "czanik.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}}, {"karma": 0, "comment_id": 699138, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 1, "text": "works fine", "timestamp": "2017-11-22 13:32:10", "update_id": 102874, "user_id": 203, "id": 699138, "testcase_feedback": [], "user": {"name": "mstevens", "email": "ms@unix9.com", "id": 203, "avatar": "https://seccdn.libravatar.org/avatar/66cdd58f5ace3c9703b685ce40fdb67023b566459b5d44a8768d0cb55407bd1c?s=24&d=retro", "openid": "mstevens.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 699156, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 1, "text": "Tested with memcached part - works for me.", "timestamp": "2017-11-22 14:30:10", "update_id": 102874, "user_id": 2086, "id": 699156, "testcase_feedback": [], "user": {"name": "pblaho", "email": "pblaho@redhat.com", "id": 2086, "avatar": "https://seccdn.libravatar.org/avatar/fbffc544c994b0fe74b77714fa2f5e59eb1040843982f6bd3e8d27bfc182ebdb?s=24&d=retro", "openid": "pblaho.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 699158, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 1, "text": "Works for me, fixes the alerts when I use DNF updates including bug #1514677\n", "timestamp": "2017-11-22 14:33:23", "update_id": 102874, "user_id": 449, "id": 699158, "testcase_feedback": [], "user": {"name": "g6avk", "email": "colin.thomson@g6avk.co.uk", "id": 449, "avatar": "https://seccdn.libravatar.org/avatar/a9a8954c462d35fa59f7eeec4e480384f9d1ec0271262a4530bfbf09340120f5?s=24&d=retro", "openid": "g6avk.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 699174, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "What about this:\n\n\t[ 6.312960] SELinux: Permission getrlimit in class process not defined in policy.\n\t[ 6.314149] SELinux: Class sctp_socket not defined in policy.\n\t[ 6.315204] SELinux: Class icmp_socket not defined in policy.\n\t[ 6.316258] SELinux: Class ax25_socket not defined in policy.\n\t[ 6.317300] SELinux: Class ipx_socket not defined in policy.\n\t[ 6.318333] SELinux: Class netrom_socket not defined in policy.\n\t[ 6.319362] SELinux: Class atmpvc_socket not defined in policy.\n\t[ 6.320370] SELinux: Class x25_socket not defined in policy.\n\t[ 6.321362] SELinux: Class rose_socket not defined in policy.\n\t[ 6.322358] SELinux: Class decnet_socket not defined in policy.\n\t[ 6.323366] SELinux: Class atmsvc_socket not defined in policy.\n\t[ 6.324344] SELinux: Class rds_socket not defined in policy.\n\t[ 6.325305] SELinux: Class irda_socket not defined in policy.\n\t[ 6.326250] SELinux: Class pppox_socket not defined in policy.\n\t[ 6.327185] SELinux: Class llc_socket not defined in policy.\n\t[ 6.328113] SELinux: Class can_socket not defined in policy.\n\t[ 6.329026] SELinux: Class tipc_socket not defined in policy.\n\t[ 6.329942] SELinux: Class bluetooth_socket not defined in policy.\n\t[ 6.330853] SELinux: Class iucv_socket not defined in policy.\n\t[ 6.331765] SELinux: Class rxrpc_socket not defined in policy.\n\t[ 6.332673] SELinux: Class isdn_socket not defined in policy.\n\t[ 6.333573] SELinux: Class phonet_socket not defined in policy.\n\t[ 6.334474] SELinux: Class ieee802154_socket not defined in policy.\n\t[ 6.335384] SELinux: Class caif_socket not defined in policy.\n\t[ 6.336290] SELinux: Class alg_socket not defined in policy.\n\t[ 6.337189] SELinux: Class nfc_socket not defined in policy.\n\t[ 6.338077] SELinux: Class vsock_socket not defined in policy.\n\t[ 6.338961] SELinux: Class kcm_socket not defined in policy.\n\t[ 6.339845] SELinux: Class qipcrtr_socket not defined in policy.\n\t[ 6.340734] SELinux: Class smc_socket not defined in policy.\n\t[ 6.341630] SELinux: the above unknown classes and permissions will be allowed\n", "timestamp": "2017-11-22 14:54:33", "update_id": 102874, "user_id": 207, "id": 699174, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 699384, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Does not fix BZ 1460244", "timestamp": "2017-11-22 21:58:44", "update_id": 102874, "user_id": 457, "id": 699384, "testcase_feedback": [], "user": {"name": "mooninite", "email": "mike@cchtml.com", "id": 457, "avatar": "https://seccdn.libravatar.org/avatar/8b3c41993362b402769daf7b9e159cd28a40b2552f96c93bba03f32d4d68d127?s=24&d=retro", "openid": "mooninite.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 699454, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 1, "text": "Fixed a few bugs, but didn't fully fix the dovecot bug (BZ1513153)\n", "timestamp": "2017-11-23 00:56:07", "update_id": 102874, "user_id": 3459, "id": 699454, "testcase_feedback": [], "user": {"name": "sshambar", "email": "scott-fedora@shambarger.net", "id": 3459, "avatar": "https://seccdn.libravatar.org/avatar/55b82e9ef58a4358f2c0f2491fbf72afdb95a16b3c8b9d4f47ba73ffdde6cbba?s=24&d=retro", "openid": "sshambar.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 699743, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2017-11-23 19:20:44", "update_id": 102874, "user_id": 2935, "id": 699743, "testcase_feedback": [], "user": {"name": "imabug", "email": "eugenemah@gmail.com", "id": 2935, "avatar": "https://seccdn.libravatar.org/avatar/ea8ba927783ee0ef10e6f05f14791abf925972bac4f31aba458058d3e7907a6d?s=24&d=retro", "openid": "imabug.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedora-hams"}]}}}, {"karma": 0, "comment_id": 700622, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "SELinux is preventing `setroubleshootd` from read access\non the file /var/lib/rpm/Packages.\n\n Source Context system_u:system_r:setroubleshootd_t:s0\n Target Context unconfined_u:object_r:var_lib_t:s0\n Target Objects /var/lib/rpm/Packages [ file ]\n Source setroubleshootd\n Source Path setroubleshootd\n Target RPM Packages rpm-4.14.0-2.fc27.x86_64\n Policy RPM selinux-policy-3.13.1-283.17.fc27.noarch\n Selinux Enabled True\n Policy Type targeted\n Enforcing Mode Enforcing\n Platform Linux 4.14.2 #1 SMP Fri\n Nov 24 16:50:57 EET 2017 x86_64 x86_64\n Alert Count 12\n First Seen 2017-10-21 20:07:47 EEST\n Last Seen 2017-11-17 08:29:09 EET\n\nSELinux is preventing `setroubleshootd` from 'read, write' accesses\non the file /var/lib/rpm/.dbenv.lock\n\n Source Context system_u:system_r:setroubleshootd_t:s0\n Target Context unconfined_u:object_r:var_lib_t:s0\n Target Objects /var/lib/rpm/.dbenv.lock [ file ]\n Source setroubleshootd\n Source Path setroubleshootd\n Policy RPM selinux-policy-3.13.1-283.17.fc27.noarch\n Selinux Enabled True\n Policy Type targeted\n Enforcing Mode Enforcing\n Platform Linux 4.14.2 #1 SMP Fri\n Nov 24 16:50:57 EET 2017 x86_64 x86_64\n Alert Count 9\n First Seen 2017-11-13 20:30:40 EET\n Last Seen 2017-11-17 08:29:09 EET\n\nSELinux is preventing `mandb` from search access\non the directory /var/lib/sss\n\n Source Context system_u:system_r:mandb_t:s0\n Target Context system_u:object_r:sssd_var_lib_t:s0\n Target Objects /var/lib/sss [ dir ]\n Source Path mandb\n Target RPM Packages sssd-common-1.16.0-4.fc27.x86_64\n Policy RPM selinux-policy-3.13.1-283.17.fc27.noarch\n Selinux Enabled True\n Policy Type targeted\n Enforcing Mode Enforcing\n Platform Linux 4.14.2 #1 SMP Fri\n Nov 24 16:50:57 EET 2017 x86_64 x86_64\n Alert Count 66\n First Seen 2017-11-17 03:13:37 EET\n Last Seen 2017-11-22 07:41:30 EET", "timestamp": "2017-11-25 21:39:09", "update_id": 102874, "user_id": 3930, "id": 700622, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 700751, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "One part of bug 1513153 waw fixed, but the other not. There were two missing policies (see coomment 2) but only the first was fixed. Still missing is\nallow dovecot_deliver_t mail_home_rw_t:file map;\n", "timestamp": "2017-11-26 09:47:33", "update_id": 102874, "user_id": 2756, "id": 700751, "testcase_feedback": [], "user": {"name": "sjoerd", "email": "sjoerd@acm.org", "id": 2756, "avatar": "https://seccdn.libravatar.org/avatar/09d69b455cbd5a713ad8ef2c9a409d53d8e9ee39e95ee6e6fa9e064d9739117d?s=24&d=retro", "openid": "sjoerd.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 705736, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "`SELinux` is preventing abrt-action-gen from read access on the file _libvtkFiltersHybrid-pv5.4.so.1_\n\n Source Context system_u:system_r:abrt_t:s0-s0:c0.c1023\n Target Context unconfined_u:object_r:mnt_t:s0\n Target Objects libvtkFiltersHybrid-pv5.4.so.1 [ file ]\n Source abrt-action-gen\n Policy RPM selinux-policy-3.13.1-283.17.fc27.noarch\n Selinux Enabled True\n Policy Type targeted\n Enforcing Mode Enforcing\n Alert Count 1952\n First Seen 2017-12-08 01:59:11 EET\n Last Seen 2017-12-08 01:59:19 EET\n Raw Audit Messages\n type=AVC msg=audit(1512691159.49:2601): avc: denied { read } for pid=44648 comm=\"abrt-action-gen\" name=\"libvtkFiltersHybrid-pv5.4.so.1\" dev=\"sda5\" ino=4036077 scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:mnt_t:s0 tclass=file permissive=0", "timestamp": "2017-12-08 01:33:35", "update_id": 102874, "user_id": 3930, "id": 705736, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 705737, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "`SELinux` is preventing abrt-action-gen from read access on the file _libvtkFiltersHybrid-pv5.4.so.1_\n\n Source Context system_u:system_r:abrt_t:s0-s0:c0.c1023\n Target Context unconfined_u:object_r:mnt_t:s0\n Target Objects libvtkFiltersHybrid-pv5.4.so.1 [ file ]\n Source abrt-action-gen\n Policy RPM selinux-policy-3.13.1-283.17.fc27.noarch\n Selinux Enabled True\n Policy Type targeted\n Enforcing Mode Enforcing\n Alert Count 1952\n First Seen 2017-12-08 01:59:11 EET\n Last Seen 2017-12-08 01:59:19 EET\n Raw Audit Messages\n type=AVC msg=audit(1512691159.49:2601): avc: denied { read } for pid=44648 comm=\"abrt-action-gen\" name=\"libvtkFiltersHybrid-pv5.4.so.1\" dev=\"sda5\" ino=4036077 scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:mnt_t:s0 tclass=file permissive=0", "timestamp": "2017-12-08 01:35:53", "update_id": 102874, "user_id": 3930, "id": 705737, "testcase_feedback": [], "user": {"name": "bluepencil", "email": "luc696@gmail.com", "id": 3930, "avatar": "https://seccdn.libravatar.org/avatar/8885a39ab14091a8d2779bff608322d16af8c1721c9bc9a7fe116666c6979bd4?s=24&d=retro", "openid": "bluepencil.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 708453, "bug_id": 1501331, "comment": {"karma": -1, "karma_critpath": 0, "text": "I replaced the `selinux-policy` packages on a Fedora 27 Atomic Host with this build and ran into the following BZ - https://bugzilla.redhat.com/show_bug.cgi?id=1525589", "timestamp": "2017-12-13 16:15:32", "update_id": 104161, "user_id": 2330, "id": 708453, "testcase_feedback": [], "user": {"name": "miabbott", "email": "miabbott@redhat.com", "id": 2330, "avatar": "https://seccdn.libravatar.org/avatar/7a817dfcb5c89884ae72bead89932eca10573171f25310dd50e548310b52ba69?s=24&d=retro", "openid": "miabbott.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "atomic"}, {"name": "iot"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 708458, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Additionally, BZ#1510139 still seems to persist with this build", "timestamp": "2017-12-13 16:49:56", "update_id": 104161, "user_id": 2330, "id": 708458, "testcase_feedback": [], "user": {"name": "miabbott", "email": "miabbott@redhat.com", "id": 2330, "avatar": "https://seccdn.libravatar.org/avatar/7a817dfcb5c89884ae72bead89932eca10573171f25310dd50e548310b52ba69?s=24&d=retro", "openid": "miabbott.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "atomic"}, {"name": "iot"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 708459, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Additionally, BZ#1510139 still seems to persist with this build", "timestamp": "2017-12-13 16:52:23", "update_id": 104161, "user_id": 2330, "id": 708459, "testcase_feedback": [], "user": {"name": "miabbott", "email": "miabbott@redhat.com", "id": 2330, "avatar": "https://seccdn.libravatar.org/avatar/7a817dfcb5c89884ae72bead89932eca10573171f25310dd50e548310b52ba69?s=24&d=retro", "openid": "miabbott.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "atomic"}, {"name": "iot"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 708770, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2017-12-14 17:50:37", "update_id": 104161, "user_id": 756, "id": 708770, "testcase_feedback": [], "user": {"name": "sailer", "email": "fedora@tsailer.ch", "id": 756, "avatar": "https://seccdn.libravatar.org/avatar/3e774d7343286bca5af8563ef1bb786ab238a3303f89c9892d99e4bd1d071552?s=24&d=retro", "openid": "sailer.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 708771, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "#1508659 does not seem to be solved either", "timestamp": "2017-12-14 17:53:00", "update_id": 104161, "user_id": 756, "id": 708771, "testcase_feedback": [], "user": {"name": "sailer", "email": "fedora@tsailer.ch", "id": 756, "avatar": "https://seccdn.libravatar.org/avatar/3e774d7343286bca5af8563ef1bb786ab238a3303f89c9892d99e4bd1d071552?s=24&d=retro", "openid": "sailer.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 709106, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "#1519810 problem persists, see https://bugzilla.redhat.com/show_bug.cgi?id=1519810#c3", "timestamp": "2017-12-15 21:51:38", "update_id": 104161, "user_id": 3662, "id": 709106, "testcase_feedback": [], "user": {"name": "goodmirek", "email": "goodmirek@goodmirek.com", "id": 3662, "avatar": "https://seccdn.libravatar.org/avatar/79cd77881aeb4be856d025cc8e22b15319a14509fdef2ef35ef38cf895a991b2?s=24&d=retro", "openid": "goodmirek.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 709107, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "#1519810 problem persists, see https://bugzilla.redhat.com/show_bug.cgi?id=1519810#c3", "timestamp": "2017-12-15 21:53:58", "update_id": 104161, "user_id": 3662, "id": 709107, "testcase_feedback": [], "user": {"name": "goodmirek", "email": "goodmirek@goodmirek.com", "id": 3662, "avatar": "https://seccdn.libravatar.org/avatar/79cd77881aeb4be856d025cc8e22b15319a14509fdef2ef35ef38cf895a991b2?s=24&d=retro", "openid": "goodmirek.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 709112, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "#1519810 problem persists, see https://bugzilla.redhat.com/show_bug.cgi?id=1519810#c3", "timestamp": "2017-12-15 21:56:29", "update_id": 104161, "user_id": 3662, "id": 709112, "testcase_feedback": [], "user": {"name": "goodmirek", "email": "goodmirek@goodmirek.com", "id": 3662, "avatar": "https://seccdn.libravatar.org/avatar/79cd77881aeb4be856d025cc8e22b15319a14509fdef2ef35ef38cf895a991b2?s=24&d=retro", "openid": "goodmirek.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 709414, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-12-16 17:16:32", "update_id": 104161, "user_id": 1741, "id": 709414, "testcase_feedback": [], "user": {"name": "goeran", "email": "goeran@uddeborg.se", "id": 1741, "avatar": "https://seccdn.libravatar.org/avatar/ba87fbe3d1e44948ba01fcd69216fc484542ff1c37779ab4ccb8026b9b2a574e?s=24&d=retro", "openid": "goeran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 709415, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "This upgrade fixes Fedora#1521137 but not Fedora#1447909. Nothing breaks for me that wasn't already broken, so still positive overall.", "timestamp": "2017-12-16 17:18:57", "update_id": 104161, "user_id": 1741, "id": 709415, "testcase_feedback": [], "user": {"name": "goeran", "email": "goeran@uddeborg.se", "id": 1741, "avatar": "https://seccdn.libravatar.org/avatar/ba87fbe3d1e44948ba01fcd69216fc484542ff1c37779ab4ccb8026b9b2a574e?s=24&d=retro", "openid": "goeran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 709653, "bug_id": 1501331, "comment": {"karma": -1, "karma_critpath": 0, "text": "It fixes Fedora#1516816, but breaks aide.", "timestamp": "2017-12-17 18:07:09", "update_id": 104161, "user_id": 4029, "id": 709653, "testcase_feedback": [], "user": {"name": "alansh42", "email": "alanh@arizonaroads.com", "id": 4029, "avatar": "https://seccdn.libravatar.org/avatar/89764a63b398efd28cee600b4cbe40f6b3c572f7bff85c674fdfaa84995c1c0b?s=24&d=retro", "openid": "alansh42.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 709928, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "https://bugzilla.redhat.com/show_bug.cgi?id=1520033 is fixed.", "timestamp": "2017-12-18 10:16:45", "update_id": 104161, "user_id": 470, "id": 709928, "testcase_feedback": [], "user": {"name": "adelton", "email": "jpx-fas@adelton.com", "id": 470, "avatar": "https://seccdn.libravatar.org/avatar/93c909e46fda202012da1b940fe9c66dc7496ff77f034d1e74f26aaa9ad59aef?s=24&d=retro", "openid": "adelton.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitmod_intercept_form_submit"}, {"name": "gitmod_authnz_pam"}, {"name": "gitwebauthinfra"}, {"name": "gitmod_lookup_identity"}]}}}, {"karma": 0, "comment_id": 709929, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "https://bugzilla.redhat.com/show_bug.cgi?id=1520033 is fixed.", "timestamp": "2017-12-18 10:18:16", "update_id": 104161, "user_id": 470, "id": 709929, "testcase_feedback": [], "user": {"name": "adelton", "email": "jpx-fas@adelton.com", "id": 470, "avatar": "https://seccdn.libravatar.org/avatar/93c909e46fda202012da1b940fe9c66dc7496ff77f034d1e74f26aaa9ad59aef?s=24&d=retro", "openid": "adelton.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitmod_intercept_form_submit"}, {"name": "gitmod_authnz_pam"}, {"name": "gitwebauthinfra"}, {"name": "gitmod_lookup_identity"}]}}}, {"karma": 0, "comment_id": 710187, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Fixes 1524256 for me.", "timestamp": "2017-12-18 19:32:46", "update_id": 104161, "user_id": 682, "id": 710187, "testcase_feedback": [], "user": {"name": "tibbs", "email": "j@tib.bs", "id": 682, "avatar": "https://seccdn.libravatar.org/avatar/2759d203ee6375cef2c792c306100be2b49e5c19b1ca3d970d190ae803c20b20?s=24&d=retro", "openid": "tibbs.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "packaging-committee"}, {"name": "fedora-contributor"}, {"name": "gitfas"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "wikiadmin"}, {"name": "sysadmin-devel"}, {"name": "cvsadmin"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-cvs"}, {"name": "sysadmin"}, {"name": "wikiedit"}, {"name": "signed_fpca"}, {"name": "cvsfedora"}, {"name": "gitkquotanotifier"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 710188, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Fixes 1524256 for me.", "timestamp": "2017-12-18 19:34:06", "update_id": 104161, "user_id": 682, "id": 710188, "testcase_feedback": [], "user": {"name": "tibbs", "email": "j@tib.bs", "id": 682, "avatar": "https://seccdn.libravatar.org/avatar/2759d203ee6375cef2c792c306100be2b49e5c19b1ca3d970d190ae803c20b20?s=24&d=retro", "openid": "tibbs.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "packaging-committee"}, {"name": "fedora-contributor"}, {"name": "gitfas"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "wikiadmin"}, {"name": "sysadmin-devel"}, {"name": "cvsadmin"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-cvs"}, {"name": "sysadmin"}, {"name": "wikiedit"}, {"name": "signed_fpca"}, {"name": "cvsfedora"}, {"name": "gitkquotanotifier"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 711190, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works fine for me.", "timestamp": "2017-12-20 09:02:11", "update_id": 104161, "user_id": 1177, "id": 711190, "testcase_feedback": [], "user": {"name": "jayjayjazz", "email": "jayjayjazz@gmail.com", "id": 1177, "avatar": "https://seccdn.libravatar.org/avatar/b7f3994e0ba48616a78257e2477c106613cb1d0802ef48790f7b51d4d7943211?s=24&d=retro", "openid": "jayjayjazz.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 711209, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "I fixed some bugs related to selinux-policy from this thread and add couple of new ones from bugzilla.", "timestamp": "2017-12-20 11:23:48", "update_id": 104161, "user_id": 848, "id": 711209, "testcase_feedback": [], "user": {"name": "lvrabec", "email": "lvrabec@redhat.com", "id": 848, "avatar": "https://seccdn.libravatar.org/avatar/fc5620e4b2cb6ce528cc5b9c4576b4421a9c47f14eeb1e764130d848219d8048?s=24&d=retro", "openid": "lvrabec.id.fedoraproject.org", "groups": [{"name": "packager"}]}}}, {"karma": 0, "comment_id": 711230, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-12-20 14:06:37", "update_id": 104161, "user_id": 470, "id": 711230, "testcase_feedback": [], "user": {"name": "adelton", "email": "jpx-fas@adelton.com", "id": 470, "avatar": "https://seccdn.libravatar.org/avatar/93c909e46fda202012da1b940fe9c66dc7496ff77f034d1e74f26aaa9ad59aef?s=24&d=retro", "openid": "adelton.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitmod_intercept_form_submit"}, {"name": "gitmod_authnz_pam"}, {"name": "gitwebauthinfra"}, {"name": "gitmod_lookup_identity"}]}}}, {"karma": 0, "comment_id": 711283, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "wfm, fixes 1526722", "timestamp": "2017-12-20 22:14:52", "update_id": 104161, "user_id": 4037, "id": 711283, "testcase_feedback": [], "user": {"name": "pp3345", "email": "fedora@pp3345.net", "id": 4037, "avatar": "https://seccdn.libravatar.org/avatar/9de8982ccc34c4c03f9a1e2b017ba104227f5f7b0aa2ba42629789e7fe1f3b01?s=24&d=retro", "openid": "pp3345.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 712009, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "The fix for Fedora#1521137 is good in this release too, and I don't see anything new broken.", "timestamp": "2017-12-23 12:52:43", "update_id": 104161, "user_id": 1741, "id": 712009, "testcase_feedback": [], "user": {"name": "goeran", "email": "goeran@uddeborg.se", "id": 1741, "avatar": "https://seccdn.libravatar.org/avatar/ba87fbe3d1e44948ba01fcd69216fc484542ff1c37779ab4ccb8026b9b2a574e?s=24&d=retro", "openid": "goeran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 712123, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Solves Bz 1519729", "timestamp": "2017-12-23 21:23:33", "update_id": 104161, "user_id": 723, "id": 712123, "testcase_feedback": [], "user": {"name": "djuran", "email": "djuran@redhat.com", "id": 723, "avatar": "https://seccdn.libravatar.org/avatar/a29dc4e61a4b910f0b13aae39f4553c4da8bf133f1716adc55b4793033c967e9?s=24&d=retro", "openid": "djuran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}]}}}, {"karma": 0, "comment_id": 712238, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "No regressions noted.", "timestamp": "2017-12-24 17:55:15", "update_id": 104161, "user_id": 194, "id": 712238, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 715820, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Fixes things for me. Thanks!", "timestamp": "2018-01-05 15:07:55", "update_id": 105127, "user_id": 207, "id": 715820, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 715934, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "https://bugzilla.redhat.com/show_bug.cgi?id=1473954 is not fixed yet but this seems to be expected given it is not in the list.", "timestamp": "2018-01-05 21:21:21", "update_id": 105127, "user_id": 1556, "id": 715934, "testcase_feedback": [], "user": {"name": "akostadi", "email": "akostadi@redhat.com", "id": 1556, "avatar": "https://seccdn.libravatar.org/avatar/cf364053edf2eaf8fcde96bee1801d50d12fb5d53b5fcfa12facfbe8d310c4c4?s=24&d=retro", "openid": "akostadi.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 715935, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "https://bugzilla.redhat.com/show_bug.cgi?id=1473954 is not fixed yet but this seems to be expected given it is not in the list.", "timestamp": "2018-01-05 21:22:32", "update_id": 105127, "user_id": 1556, "id": 715935, "testcase_feedback": [], "user": {"name": "akostadi", "email": "akostadi@redhat.com", "id": 1556, "avatar": "https://seccdn.libravatar.org/avatar/cf364053edf2eaf8fcde96bee1801d50d12fb5d53b5fcfa12facfbe8d310c4c4?s=24&d=retro", "openid": "akostadi.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 715936, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "https://bugzilla.redhat.com/show_bug.cgi?id=1473954 is not fixed yet but this seems to be expected given it is not in the list.", "timestamp": "2018-01-05 21:23:39", "update_id": 105127, "user_id": 1556, "id": 715936, "testcase_feedback": [], "user": {"name": "akostadi", "email": "akostadi@redhat.com", "id": 1556, "avatar": "https://seccdn.libravatar.org/avatar/cf364053edf2eaf8fcde96bee1801d50d12fb5d53b5fcfa12facfbe8d310c4c4?s=24&d=retro", "openid": "akostadi.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 716550, "bug_id": 1501331, "comment": {"karma": 0, "karma_critpath": 0, "text": "UDP socket still can't be activated for port 53. Only TCP was fixed.", "timestamp": "2018-01-08 09:30:18", "update_id": 105127, "user_id": 3180, "id": 716550, "testcase_feedback": [], "user": {"name": "tkrizek", "email": "tomas.krizek@nic.cz", "id": 3180, "avatar": "https://seccdn.libravatar.org/avatar/96bfa277510476de258a6b00c99d51b6d474738eff0596b9165a711256afdbf4?s=24&d=retro", "openid": "tkrizek.id.fedoraproject.org", "groups": [{"name": "packager"}]}}}, {"karma": 0, "comment_id": 717227, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Solves the squirrelbug issue", "timestamp": "2018-01-09 16:47:28", "update_id": 105127, "user_id": 723, "id": 717227, "testcase_feedback": [], "user": {"name": "djuran", "email": "djuran@redhat.com", "id": 723, "avatar": "https://seccdn.libravatar.org/avatar/a29dc4e61a4b910f0b13aae39f4553c4da8bf133f1716adc55b4793033c967e9?s=24&d=retro", "openid": "djuran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}]}}}, {"karma": 0, "comment_id": 717228, "bug_id": 1501331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Solves the squirrelbug issue", "timestamp": "2018-01-09 16:48:54", "update_id": 105127, "user_id": 723, "id": 717228, "testcase_feedback": [], "user": {"name": "djuran", "email": "djuran@redhat.com", "id": 723, "avatar": "https://seccdn.libravatar.org/avatar/a29dc4e61a4b910f0b13aae39f4553c4da8bf133f1716adc55b4793033c967e9?s=24&d=retro", "openid": "djuran.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}]}}}]}, {"bug_id": 1514272, "title": "SELinux breaks snapper {status,diff,undochange,xadiff}", "security": false, "parent": false, "feedback": []}, {"bug_id": 1515959, "title": "SELinux is preventing systemd from 'create' accesses on the netlink_selinux_socket Unknown.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1520147, "title": "bluetooth gives error on bootup; does not work properly", "security": false, "parent": false, "feedback": []}, {"bug_id": 1525017, "title": "SELinux is preventing logrotate from 'getattr' accesses on the file /var/log/audit/audit.log.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1531911, "title": "selinux prevents dovecot-lda from using mmap", "security": false, "parent": false, "feedback": []}, {"bug_id": 1532043, "title": "SELinux is preventing /usr/lib/cups/backend/cups-pdf from 'write' accesses on the sock_file system_bus_socket.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1532079, "title": "SELinux is preventing dnsmasq from updating the nameserver list via dbus", "security": false, "parent": false, "feedback": []}, {"bug_id": 1536152, "title": "SELinux is preventing pmdalinux from 'getattr' accesses on the directory /var/lib/mock.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1536689, "title": "nscd cannot read its database in /var/db/nscd", "security": false, "parent": false, "feedback": [{"karma": 0, "comment_id": 831238, "bug_id": 1536689, "comment": {"karma": 1, "karma_critpath": 1, "text": "For the #1505050 nothing has changed.", "timestamp": "2018-09-07 08:36:34", "update_id": 122134, "user_id": 4276, "id": 831238, "testcase_feedback": [], "user": {"name": "sunwire", "email": "sunwire+fas@gmail.com", "id": 4276, "avatar": "https://seccdn.libravatar.org/avatar/d969797ec50e0b5ec190dbc0bc46a67e4627c37c4b20c903c6e0d30fb3416c65?s=24&d=retro", "openid": "sunwire.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 831239, "bug_id": 1536689, "comment": {"karma": 1, "karma_critpath": 1, "text": "For the #1505050 nothing has changed", "timestamp": "2018-09-07 08:38:51", "update_id": 122134, "user_id": 4276, "id": 831239, "testcase_feedback": [], "user": {"name": "sunwire", "email": "sunwire+fas@gmail.com", "id": 4276, "avatar": "https://seccdn.libravatar.org/avatar/d969797ec50e0b5ec190dbc0bc46a67e4627c37c4b20c903c6e0d30fb3416c65?s=24&d=retro", "openid": "sunwire.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 831845, "bug_id": 1536689, "comment": {"karma": 1, "karma_critpath": 1, "text": "I haven't seen any new denials with this update. The denials involving boltd, gdm, polkit, and dbus after gdm and lightdm start which I reported aren't happening with this update. https://bugzilla.redhat.com/show_bug.cgi?id=1625786", "timestamp": "2018-09-08 20:55:15", "update_id": 122134, "user_id": 4471, "id": 831845, "testcase_feedback": [], "user": {"name": "mattf", "email": "matt.fagnani@bell.net", "id": 4471, "avatar": "https://seccdn.libravatar.org/avatar/dfd914605b2f5dafb41729697904a39aacfba787012bad999834e94535892c46?s=24&d=retro", "openid": "mattf.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 831846, "bug_id": 1536689, "comment": {"karma": 1, "karma_critpath": 1, "text": "I haven't seen any new denials with this update. The denials involving boltd, gdm, polkit, and dbus after gdm and lightdm start which I reported aren't happening with this update. https://bugzilla.redhat.com/show_bug.cgi?id=1625786", "timestamp": "2018-09-08 20:56:04", "update_id": 122134, "user_id": 4471, "id": 831846, "testcase_feedback": [], "user": {"name": "mattf", "email": "matt.fagnani@bell.net", "id": 4471, "avatar": "https://seccdn.libravatar.org/avatar/dfd914605b2f5dafb41729697904a39aacfba787012bad999834e94535892c46?s=24&d=retro", "openid": "mattf.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 832272, "bug_id": 1536689, "comment": {"karma": 0, "karma_critpath": 0, "text": "dovecot seems to be happy with this, from https://bugzilla.redhat.com/show_bug.cgi?id=1615058", "timestamp": "2018-09-10 06:41:09", "update_id": 122134, "user_id": 207, "id": 832272, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 832273, "bug_id": 1536689, "comment": {"karma": 0, "karma_critpath": 1, "text": "dovecot seems to be happy with this, from https://bugzilla.redhat.com/show_bug.cgi?id=1615058\n\nkarma: +1", "timestamp": "2018-09-10 06:42:25", "update_id": 122134, "user_id": 207, "id": 832273, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 832274, "bug_id": 1536689, "comment": {"karma": 0, "karma_critpath": 1, "text": "dovecot seems to be happy with this, from https://bugzilla.redhat.com/show_bug.cgi?id=1615058\n\nadded general +1s\n\nkarma: +1", "timestamp": "2018-09-10 06:44:53", "update_id": 122134, "user_id": 207, "id": 832274, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 832289, "bug_id": 1536689, "comment": {"karma": 0, "karma_critpath": 0, "text": "Works.", "timestamp": "2018-09-10 07:51:52", "update_id": 122134, "user_id": 207, "id": 832289, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 832292, "bug_id": 1536689, "comment": {"karma": 0, "karma_critpath": 0, "text": "Works.", "timestamp": "2018-09-10 07:53:17", "update_id": 122134, "user_id": 207, "id": 832292, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 832293, "bug_id": 1536689, "comment": {"karma": 0, "karma_critpath": 0, "text": "Works.", "timestamp": "2018-09-10 07:54:06", "update_id": 122134, "user_id": 207, "id": 832293, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}]}, {"bug_id": 1538210, "title": "selinux seemed to be denying access to sssd related cache", "security": false, "parent": false, "feedback": []}, {"bug_id": 1540163, "title": "selinux prevents pacemaker to check the status of systemd services", "security": false, "parent": false, "feedback": []}, {"bug_id": 1540405, "title": "SELinux is preventing php-fpm from 'map' accesses on the archivo /dev/shm/mongoc-934.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1540584, "title": "SELinux is preventing gpsd from using the 'getsession' accesses on a process.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1540666, "title": "SELinux is preventing abrt-dbus from 'map' accesses on the file /etc/passwd.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1540816, "title": "SELinux is preventing boinc_client from 'map' accesses on the file 2F64726D206D6D206F626A656374202864656C6574656429.", "security": false, "parent": false, "feedback": []}, {"bug_id": 1545005, "title": "SELinux is preventing snapperd from using the 'fowner' capabilities.", "security": false, "parent": false, "feedback": []}], "updateid": "FEDORA-2018-a9711c96b2", "karma": 8, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}