stable

container-selinux-2.233.0-1.fc41

FEDORA-2024-52c1264778 created by packit 4 weeks ago for Fedora 41

Automatic update for container-selinux-2.233.0-1.fc41.

Changelog for container-selinux
* Wed Sep 11 2024 Packit <hello@packit.dev> - 2:2.233.0-1
- Update to 2.233.0 upstream release

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-52c1264778

This update has been submitted for testing by packit.

4 weeks ago

This update's test gating status has been changed to 'waiting'.

4 weeks ago

This update's test gating status has been changed to 'waiting'.

4 weeks ago

This update's test gating status has been changed to 'passed'.

4 weeks ago

This update has been pushed to testing.

4 weeks ago
User Icon derekenz commented & provided feedback 4 weeks ago
karma

Works

This update can be pushed to stable now if the maintainer wishes

4 weeks ago
User Icon praiskup commented & provided feedback 4 weeks ago
karma

I can not start bash in containers now, example:

$ podman run --rm -ti registry.access.redhat.com/ubi9/ubi bash <no output, selinux cuts the process> $ sudo tail -n100 /var/log/audit/audit.log | audit2allow

============= container_t ==============

allow container_t container_file_t:chr_file { read write };

avc

type=AVC msg=audit(1726210659.521:22786): avc: denied { read write } for pid=1122774 comm="bash" path="/dev/pts/0" dev="devpts" ino=3 scontext=system_u:system_r:container_t:s0:c539,c854 tcontext=system_u:object_r:container_file_t:s0:c539,c854 tclass=chr_file permissive=0

avc with bin/echo

type=AVC msg=audit(1726210760.204:22810): avc: denied { read write } for pid=1123360 comm="echo" path="/dev/pts/0" dev="devpts" ino=3 scontext=system_u:system_r:container_t:s0:c142,c697 tcontext=system_u:object_r:container_file_t:s0:c142,c697 tclass=chr_file permissive=0

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

4 weeks ago

Downgrade to 2.232.1 is not helpful.

sudo dnf reinstall '*selinux*' not helpful either

User Icon praiskup commented & provided feedback 3 weeks ago
karma

Problems were caused by snapd-selinux. Sorry for the noise. +1

This update has been submitted for stable by lsm5.

3 weeks ago

This update has been pushed to stable.

3 weeks ago

Please login to add feedback.

Metadata
Type
enhancement
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
4 weeks ago
in testing
4 weeks ago
in stable
3 weeks ago

Automated Test Results