{"update": {"autokarma": true, "autotime": false, "stable_karma": 6, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=794433\n\n----\n\nBuild fixes starting VM in enforcing mode and using confined users in F25", "type": "bugfix", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2016-08-25 13:34:30", "date_modified": null, "date_approved": null, "date_testing": "2016-08-25 17:40:02", "date_stable": "2016-09-13 18:03:12", "alias": "FEDORA-2016-cbdde50ec4", "test_gating_status": null, "from_tag": null, "date_pushed": "2016-09-13 18:03:12", "meets_testing_requirements": false, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-2016-cbdde50ec4", "title": "selinux-policy-3.13.1-211.fc25", "version_hash": "416fd50e2d3f610976eb0fb5040399ee15566cc9", "release": {"name": "F25", "long_name": "Fedora 25", "version": "25", "id_prefix": "FEDORA", "branch": "f25", "dist_tag": "f25", "stable_tag": "f25-updates", "testing_tag": "f25-updates-testing", "candidate_tag": "f25-updates-candidate", "pending_signing_tag": "f25-signing-pending", "pending_testing_tag": "f25-updates-testing-pending", "pending_stable_tag": "f25-updates-pending", "override_tag": "f25-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "lvrabec", "email": "lvrabec@redhat.com", "id": 848, "avatar": "https://seccdn.libravatar.org/avatar/fc5620e4b2cb6ce528cc5b9c4576b4421a9c47f14eeb1e764130d848219d8048?s=24&d=retro", "openid": "lvrabec.id.stg.fedoraproject.org", "groups": [{"name": "packager"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by lvrabec. ", "timestamp": "2016-08-25 13:34:30", "update_id": 65642, "user_id": 91, "id": 476734, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has obsoleted [selinux-policy-3.13.1-210.fc25](https://bodhi.fedoraproject.org/updates/FEDORA-2016-2d8defc177), and has inherited its bugs and notes.", "timestamp": "2016-08-25 13:34:35", "update_id": 65642, "user_id": 91, "id": 476736, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2016-08-25 18:21:52", "update_id": 65642, "user_id": 91, "id": 476851, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 1, "text": "This update does not fix bug 1367280.", "timestamp": "2016-08-26 04:41:06", "update_id": 65642, "user_id": 1011, "id": 477056, "bug_feedback": [{"karma": 0, "comment_id": 477056, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 1, "comment_id": 477056, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": -1, "comment_id": 477056, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 1, "comment_id": 477056, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "frieben", "email": "jfrieben@hotmail.com", "id": 1011, "avatar": "https://seccdn.libravatar.org/avatar/96b0cc3adc98cd197d5fc309b9bc9079c6171ee02d4d109a2ef844ad9736a6ee?s=24&d=retro", "openid": "frieben.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Is it expected to see such messages in upgrade?\n\n`  Upgrading   : selinux-policy-targeted-3.13.1-211.fc25.noarch             5/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!` \n \n`  Upgrading   : docker-selinux-2:1.12.1-7.git49151a1.fc25.x86_64           6/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!`", "timestamp": "2016-08-26 06:43:24", "update_id": 65642, "user_id": 809, "id": 477115, "bug_feedback": [{"karma": 0, "comment_id": 477115, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 477115, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 477115, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 477115, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "lslebodn", "email": "lslebodn@redhat.com", "id": 809, "avatar": "https://seccdn.libravatar.org/avatar/8c6fcfe0eec099f1f01f5c237935bb5c97f2063a5c1068e57c5815e0bfecbf70?s=24&d=retro", "openid": "lslebodn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitsssd"}]}}, {"karma": 1, "karma_critpath": 0, "text": "LGTM", "timestamp": "2016-08-27 16:03:59", "update_id": 65642, "user_id": 918, "id": 478059, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "heikoada", "email": "ml@fedora-blog.de", "id": 918, "avatar": "https://seccdn.libravatar.org/avatar/d176747fdc8561348b1fc00f8f95f57b50bccc265cb1881f51706eb644bd8869?s=24&d=retro", "openid": "heikoada.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "[root@omiday selinux]# last -n1 reboot\nreboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:09   still running\n\nwtmp begins Mon Jul 25 17:00:39 2016\n[root@omiday selinux]# ausearch -m avc -ts 23:09 | grep \"{ getattr }\"\ntype=AVC msg=audit(1472965784.408:145): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n\n\n(Possible) Related boot logs:\n\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Completing initialization.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\nSep 03 23:09:42 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 90.371ms.\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.204ms.\nSep 03 23:09:42 omiday.can.local systemd-journald[1080]: Journal started\nSep 03 23:09:41 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=11094 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=11092 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n \n", "timestamp": "2016-09-04 05:39:42", "update_id": 65642, "user_id": 2847, "id": 481907, "bug_feedback": [{"karma": 0, "comment_id": 481907, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481907, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": -1, "comment_id": 481907, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481907, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:39:55", "update_id": 65642, "user_id": 2847, "id": 481908, "bug_feedback": [{"karma": 0, "comment_id": 481908, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481908, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481908, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481908, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:40", "update_id": 65642, "user_id": 2847, "id": 481909, "bug_feedback": [{"karma": 0, "comment_id": 481909, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481909, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481909, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481909, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:53", "update_id": 65642, "user_id": 2847, "id": 481910, "bug_feedback": [{"karma": 0, "comment_id": 481910, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481910, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481910, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481910, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "Sorry about the previous messed up report and empty submissions, here's a \nformatted one:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"{ getattr }\"\n    type=AVC msg=audit(1472968121.957:143): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    \n\nRelated boot logs:\n\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Completing initialization.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 76.855ms.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.613ms.\n    Sep 03 23:48:39 omiday.can.local systemd-journald[1093]: Journal started\n    Sep 03 23:48:39 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=1173 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=1171 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n", "timestamp": "2016-09-04 06:03:07", "update_id": 65642, "user_id": 2847, "id": 481936, "bug_feedback": [{"karma": 0, "comment_id": 481936, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481936, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481936, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481936, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "WFM:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"firewalld\" \n    <no matches>\n    \n", "timestamp": "2016-09-04 06:09:52", "update_id": 65642, "user_id": 2847, "id": 481937, "bug_feedback": [{"karma": 0, "comment_id": 481937, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481937, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481937, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 1, "comment_id": 481937, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-04 06:10:31", "update_id": 65642, "user_id": 2847, "id": 481938, "bug_feedback": [{"karma": 0, "comment_id": 481938, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481938, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481938, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 481938, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "In reply to \nhttps://bodhi.fedoraproject.org/updates/selinux-policy-3.13.1-211.fc25#comment-481907:\n\nI've just reviewed my prior feedbacks and realized that I should have submitted \nthe comments in Bugzilla. It's done, and please don't hate me, I'll make sure \nto review the docs next time...\n", "timestamp": "2016-09-05 03:10:27", "update_id": 65642, "user_id": 2847, "id": 482239, "bug_feedback": [{"karma": 0, "comment_id": 482239, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 482239, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 482239, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 482239, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes", "timestamp": "2016-09-08 18:00:12", "update_id": 65642, "user_id": 91, "id": 484307, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "No trouble here", "timestamp": "2016-09-08 21:37:33", "update_id": 65642, "user_id": 208, "id": 484414, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "renault", "email": "cacouret.renault@gmail.com", "id": 208, "avatar": "https://seccdn.libravatar.org/avatar/aa62a9ab252e71079b0a269b65512d76baf98b7c2c24f15cfd25e6b8f0839c1a?s=24&d=retro", "openid": "renault.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "l10n-commits"}, {"name": "gitmuffin"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2016-09-09 07:34:01", "update_id": 65642, "user_id": 284, "id": 484803, "bug_feedback": [{"karma": 0, "comment_id": 484803, "bug_id": 1315354, "bug": {"bug_id": 1315354, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 484803, "bug_id": 1342732, "bug": {"bug_id": 1342732, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 484803, "bug_id": 1367280, "bug": {"bug_id": 1367280, "title": null, "security": false, "parent": false}}, {"karma": 0, "comment_id": 484803, "bug_id": 1340611, "bug": {"bug_id": 1340611, "title": null, "security": false, "parent": false}}], "testcase_feedback": [], "user": {"name": "cairo", "email": "hansmueller183@yahoo.com", "id": 284, "avatar": "https://seccdn.libravatar.org/avatar/65ac01c684e76450d8575348b4894728e9c69ffdbd7c08718a4156e8e0daf5b6?s=24&d=retro", "openid": "cairo.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2016-09-12 16:16:01", "update_id": 65642, "user_id": 91, "id": 486773, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2016-09-12 16:16:02", "update_id": 65642, "user_id": 3084, "id": 486774, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "em3rson", "email": "em3rson@linuxmail.org", "id": 3084, "avatar": "https://seccdn.libravatar.org/avatar/b39d54825f949f4502d42921111341df334a354cc1061648f56537f87c947706?s=24&d=retro", "openid": "em3rson.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2016-09-13 18:15:03", "update_id": 65642, "user_id": 91, "id": 487416, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "selinux-policy-3.13.1-211.fc25", "signed": true, "release_id": 15, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1315354, "title": null, "security": false, "parent": false, "feedback": [{"karma": 0, "comment_id": 509002, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-10-18 15:28:14", "update_id": 70790, "user_id": 1643, "id": 509002, "testcase_feedback": [], "user": {"name": "dwalsh", "email": "dwalsh@redhat.com", "id": 1643, "avatar": "https://seccdn.libravatar.org/avatar/1c5e583ab8b950eb480915ed4b094dd68fe4e57e7f46a031473ae383bf4d5495?s=24&d=retro", "openid": "dwalsh.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "summer-coding"}, {"name": "container-sig"}, {"name": "cla_redhat"}, {"name": "hgsetroubleshoot"}, {"name": "gitsetroubleshoot"}, {"name": "cvspolicycoreutils"}, {"name": "gitsystem-config-selinux"}, {"name": "gitselinux-policy"}]}}}, {"karma": 0, "comment_id": 509003, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me.", "timestamp": "2016-10-18 15:29:05", "update_id": 70790, "user_id": 1643, "id": 509003, "testcase_feedback": [], "user": {"name": "dwalsh", "email": "dwalsh@redhat.com", "id": 1643, "avatar": "https://seccdn.libravatar.org/avatar/1c5e583ab8b950eb480915ed4b094dd68fe4e57e7f46a031473ae383bf4d5495?s=24&d=retro", "openid": "dwalsh.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "summer-coding"}, {"name": "container-sig"}, {"name": "cla_redhat"}, {"name": "hgsetroubleshoot"}, {"name": "gitsetroubleshoot"}, {"name": "cvspolicycoreutils"}, {"name": "gitsystem-config-selinux"}, {"name": "gitselinux-policy"}]}}}, {"karma": 0, "comment_id": 470990, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "The update does definitely not fix bug 1361242 and bug 1361299.", "timestamp": "2016-08-13 12:05:33", "update_id": 64666, "user_id": 1011, "id": 470990, "testcase_feedback": [], "user": {"name": "frieben", "email": "jfrieben@hotmail.com", "id": 1011, "avatar": "https://seccdn.libravatar.org/avatar/96b0cc3adc98cd197d5fc309b9bc9079c6171ee02d4d109a2ef844ad9736a6ee?s=24&d=retro", "openid": "frieben.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 472383, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "Seems to work fine, and actually seems to fix https://bugzilla.redhat.com/show_bug.cgi?id=1363914 , though it is not marked as doing so.", "timestamp": "2016-08-16 18:34:47", "update_id": 64666, "user_id": 302, "id": 472383, "testcase_feedback": [], "user": {"name": "adamwill", "email": "awilliam@redhat.com", "id": 302, "avatar": "https://seccdn.libravatar.org/avatar/51720fbb2ec5dfd2bc005ac374a3bfd3190cb8f45f3bb8d6bdf35fb6a051d03b?s=24&d=retro", "openid": "adamwill.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "fedora-contributor"}, {"name": "news"}, {"name": "gittriage"}, {"name": "sysadmin"}, {"name": "gitspin-kickstarts"}, {"name": "signed_fpca"}, {"name": "gitgeneric-release"}, {"name": "yak_farmers"}, {"name": "triagers"}, {"name": "qa"}, {"name": "sysadmin-qa"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "gitmkinitrd"}, {"name": "qa-admin"}, {"name": "aws-qa"}, {"name": "change-wranglers"}, {"name": "fedora-ci-admins"}, {"name": "common-issues-triage"}, {"name": "sysadmin-main"}, {"name": "program-management"}, {"name": "gitfedora-project-schedule"}]}}}, {"karma": 0, "comment_id": 472505, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 0, "text": "Generally functional here.", "timestamp": "2016-08-16 22:06:27", "update_id": 64666, "user_id": 137, "id": 472505, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "epel-packagers-sig"}]}}}, {"karma": 0, "comment_id": 477056, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "This update does not fix bug 1367280.", "timestamp": "2016-08-26 04:41:06", "update_id": 65642, "user_id": 1011, "id": 477056, "testcase_feedback": [], "user": {"name": "frieben", "email": "jfrieben@hotmail.com", "id": 1011, "avatar": "https://seccdn.libravatar.org/avatar/96b0cc3adc98cd197d5fc309b9bc9079c6171ee02d4d109a2ef844ad9736a6ee?s=24&d=retro", "openid": "frieben.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 477115, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "Is it expected to see such messages in upgrade?\n\n`  Upgrading   : selinux-policy-targeted-3.13.1-211.fc25.noarch             5/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!` \n \n`  Upgrading   : docker-selinux-2:1.12.1-7.git49151a1.fc25.x86_64           6/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!`", "timestamp": "2016-08-26 06:43:24", "update_id": 65642, "user_id": 809, "id": 477115, "testcase_feedback": [], "user": {"name": "lslebodn", "email": "lslebodn@redhat.com", "id": 809, "avatar": "https://seccdn.libravatar.org/avatar/8c6fcfe0eec099f1f01f5c237935bb5c97f2063a5c1068e57c5815e0bfecbf70?s=24&d=retro", "openid": "lslebodn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitsssd"}]}}}, {"karma": 0, "comment_id": 481907, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "[root@omiday selinux]# last -n1 reboot\nreboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:09   still running\n\nwtmp begins Mon Jul 25 17:00:39 2016\n[root@omiday selinux]# ausearch -m avc -ts 23:09 | grep \"{ getattr }\"\ntype=AVC msg=audit(1472965784.408:145): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n\n\n(Possible) Related boot logs:\n\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Completing initialization.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\nSep 03 23:09:42 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 90.371ms.\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.204ms.\nSep 03 23:09:42 omiday.can.local systemd-journald[1080]: Journal started\nSep 03 23:09:41 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=11094 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=11092 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n \n", "timestamp": "2016-09-04 05:39:42", "update_id": 65642, "user_id": 2847, "id": 481907, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481908, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:39:55", "update_id": 65642, "user_id": 2847, "id": 481908, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481909, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:40", "update_id": 65642, "user_id": 2847, "id": 481909, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481910, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:53", "update_id": 65642, "user_id": 2847, "id": 481910, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481936, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "Sorry about the previous messed up report and empty submissions, here's a \nformatted one:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"{ getattr }\"\n    type=AVC msg=audit(1472968121.957:143): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    \n\nRelated boot logs:\n\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Completing initialization.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 76.855ms.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.613ms.\n    Sep 03 23:48:39 omiday.can.local systemd-journald[1093]: Journal started\n    Sep 03 23:48:39 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=1173 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=1171 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n", "timestamp": "2016-09-04 06:03:07", "update_id": 65642, "user_id": 2847, "id": 481936, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481937, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "WFM:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"firewalld\" \n    <no matches>\n    \n", "timestamp": "2016-09-04 06:09:52", "update_id": 65642, "user_id": 2847, "id": 481937, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481938, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-04 06:10:31", "update_id": 65642, "user_id": 2847, "id": 481938, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 482239, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "In reply to \nhttps://bodhi.fedoraproject.org/updates/selinux-policy-3.13.1-211.fc25#comment-481907:\n\nI've just reviewed my prior feedbacks and realized that I should have submitted \nthe comments in Bugzilla. It's done, and please don't hate me, I'll make sure \nto review the docs next time...\n", "timestamp": "2016-09-05 03:10:27", "update_id": 65642, "user_id": 2847, "id": 482239, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 484803, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2016-09-09 07:34:01", "update_id": 65642, "user_id": 284, "id": 484803, "testcase_feedback": [], "user": {"name": "cairo", "email": "hansmueller183@yahoo.com", "id": 284, "avatar": "https://seccdn.libravatar.org/avatar/65ac01c684e76450d8575348b4894728e9c69ffdbd7c08718a4156e8e0daf5b6?s=24&d=retro", "openid": "cairo.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 509005, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-10-18 15:32:04", "update_id": 70790, "user_id": 2468, "id": 509005, "testcase_feedback": [], "user": {"name": "runcom", "email": "amurdaca@redhat.com", "id": 2468, "avatar": "https://seccdn.libravatar.org/avatar/3d724e4084e6202a0ecec93274be9a35984f6aa4df6df50a2aafb348da4b948e?s=24&d=retro", "openid": "runcom.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "iot"}]}}}, {"karma": 0, "comment_id": 488728, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "I see this during update:\n\n    Re-declaration of type udisks2_t\n    Failed to create node\n    Bad type declaration at /var/lib/selinux/targeted/tmp/modules/100/udisks2/cil:1\n    /usr/sbin/semodule:  Failed!\n", "timestamp": "2016-09-16 06:58:26", "update_id": 67728, "user_id": 411, "id": 488728, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 490333, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "seems to fix stuff", "timestamp": "2016-09-19 14:56:26", "update_id": 67728, "user_id": 411, "id": 490333, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 490724, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "seems to work fine ", "timestamp": "2016-09-20 13:31:15", "update_id": 67728, "user_id": 92, "id": 490724, "testcase_feedback": [], "user": {"name": "ausil", "email": "dennis@ausil.us", "id": 92, "avatar": "https://seccdn.libravatar.org/avatar/3d919a6fbd80b93c77f1ddbd2484b534e2e94df434aa0cd19981e60647014952?s=24&d=retro", "openid": "ausil.id.stg.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "fedora-contributor"}, {"name": "sysadmin"}, {"name": "fedora-s390"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "centosproject-email-aliases"}, {"name": "fedora-arm"}, {"name": "ambassadors"}, {"name": "sig-paas"}, {"name": "sysadmin-cvs"}, {"name": "cvsadmin"}, {"name": "fedora-ppc"}, {"name": "fedorabugs"}, {"name": "arm-qa"}, {"name": "trust admins"}, {"name": "sig-cloud"}]}}}, {"karma": 0, "comment_id": 490741, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "Seems OK on ARM/Power64", "timestamp": "2016-09-20 15:08:21", "update_id": 67728, "user_id": 96, "id": 490741, "testcase_feedback": [], "user": {"name": "pbrobinson", "email": "pbrobinson@gmail.com", "id": 96, "avatar": "https://seccdn.libravatar.org/avatar/3bac3f1833b19f5b5e62e166d64737430603201d1513dcc33a8c147d702a2e7d?s=24&d=retro", "openid": "pbrobinson.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "fedora-s390"}, {"name": "gitfedora-arm-installer"}, {"name": "gitspin-kickstarts"}, {"name": "fedorabugs"}, {"name": "fedora-ppc"}, {"name": "alt-sugar"}, {"name": "torrentadmin"}, {"name": "sysadmin-cvs"}, {"name": "gitfedora-wiki"}, {"name": "sysadmin-releng"}, {"name": "aarch64"}, {"name": "sysadmin"}, {"name": "signed_fpca"}, {"name": "fedora-arm"}, {"name": "sysadmin-secondary"}, {"name": "iot"}, {"name": "ipausers"}, {"name": "arm-qa"}, {"name": "fedora-contributor"}, {"name": "gitpungi"}, {"name": "cvsadmin"}]}}}, {"karma": 0, "comment_id": 490754, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "Working ok here. ", "timestamp": "2016-09-20 16:59:33", "update_id": 67728, "user_id": 1201, "id": 490754, "testcase_feedback": [], "user": {"name": "pwhalen", "email": "pwhalen@redhat.com", "id": 1201, "avatar": "https://seccdn.libravatar.org/avatar/949817e6ad6dae00b4482d198ad85f08e8758e122e977f8b28c8ce221585ca83?s=24&d=retro", "openid": "pwhalen.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-secondary"}, {"name": "iot"}, {"name": "arm-qa"}, {"name": "fedora-arm"}, {"name": "gitarm"}, {"name": "gitfedora-arm-installer"}]}}}, {"karma": 0, "comment_id": 490980, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-20 22:17:55", "update_id": 67728, "user_id": 137, "id": 490980, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "epel-packagers-sig"}]}}}, {"karma": 0, "comment_id": 491256, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-21 11:24:37", "update_id": 67728, "user_id": 1557, "id": 491256, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 492821, "bug_id": 1315354, "comment": {"karma": -1, "karma_critpath": 1, "text": "```\n  Upgrading   : selinux-policy-3.13.1-214.fc25.noarch                                             18/433 \n/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).\n/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument\nlibsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).\n/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).\n/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument\nlibsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).\nsemodule:  Failed!\n  Upgrading   : selinux-policy-targeted-3.13.1-214.fc25.noarch                                    19/433 \nRe-declaration of type udisks2_t\nFailed to create node\nBad type declaration at /var/lib/selinux/targeted/tmp/modules/100/udisks2/cil:1\n/usr/sbin/semodule:  Failed!\n  Upgrading   : libwinpr-2:2.0.0-12.20160909git1855e36.fc25.x86_64                                20/433 \n  Installing  : python2-lxml-3.6.4-1.fc25.x86_64                                                  21/433 \n  Upgrading   : docker-selinux-2:1.12.1-13.git9a3752d.fc25.x86_64                                 22/433 \nRe-declaration of type udisks2_t\nFailed to create node\nBad type declaration at /var/lib/selinux/targeted/tmp/modules/100/udisks2/cil:1\n/usr/sbin/semodule:  Failed!\n```", "timestamp": "2016-09-23 15:19:31", "update_id": 67728, "user_id": 535, "id": 492821, "testcase_feedback": [], "user": {"name": "sgallagh", "email": "sgallagh@redhat.com", "id": 535, "avatar": "https://seccdn.libravatar.org/avatar/bf298fff6edef11d0f53e6bd1fb1e649c131b75ad7200ab134883e8603591405?s=24&d=retro", "openid": "sgallagh.id.stg.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "nodejs-sig"}, {"name": "eln-sig"}, {"name": "gitding-libs"}, {"name": "gitroller-derby"}, {"name": "communishift"}, {"name": "sysadmin-noc"}, {"name": "gitnodejs-packaging"}, {"name": "fedorabugs"}, {"name": "signed_fpca"}, {"name": "gitspin-kickstarts"}, {"name": "fesco"}, {"name": "epel-cabal"}, {"name": "gitsssd"}, {"name": "sysadmin"}, {"name": "modularity-wg"}, {"name": "cockpit-jenkins"}, {"name": "gitcura"}, {"name": "gitrolekit"}, {"name": "ipausers"}, {"name": "gitelapi"}, {"name": "cockpitteam"}, {"name": "server-wg"}, {"name": "fedora-contributor"}, {"name": "summer-coding"}, {"name": "bind-dyndb-ldap"}, {"name": "sysadmin-odcs"}, {"name": "gitlab-fedora-admin"}, {"name": "sysadmin-eln"}]}}}, {"karma": 0, "comment_id": 494328, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 1, "text": "looks good", "timestamp": "2016-09-26 07:27:11", "update_id": 68549, "user_id": 417, "id": 494328, "testcase_feedback": [], "user": {"name": "kuosmanen", "email": "marttikuosmanen@yahoo.co.uk", "id": 417, "avatar": "https://seccdn.libravatar.org/avatar/f3714c2a7011e3502adfb9a26f903fa82c2f4430fece97c57f8053b97ea59fd6?s=24&d=retro", "openid": "kuosmanen.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 494410, "bug_id": 1315354, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me", "timestamp": "2016-09-26 09:14:33", "update_id": 68549, "user_id": 308, "id": 494410, "testcase_feedback": [], "user": {"name": "chr77", "email": "chr77@protonmail.com", "id": 308, "avatar": "https://seccdn.libravatar.org/avatar/c9ddae9d692ab2ea6cecd787db18332407bb29982c8a1eae39771bfb270b71fd?s=24&d=retro", "openid": "chr77.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 513896, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "systemd[1]: Unable to fix SELinux security context of /dev/shm/lldpad.state: Permission denied", "timestamp": "2016-10-29 05:06:46", "update_id": 70790, "user_id": 207, "id": 513896, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 514105, "bug_id": 1315354, "comment": {"karma": 0, "karma_critpath": 0, "text": "SELinux has detected a problem:\n\nThe source process: sddm-helper\n\nAttempted this access: write\n\nOn this file: xsession-errors", "timestamp": "2016-10-29 20:08:13", "update_id": 70790, "user_id": 207, "id": 514105, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.stg.fedoraproject.org", "groups": []}}}]}, {"bug_id": 1340611, "title": null, "security": false, "parent": false, "feedback": [{"karma": 1, "comment_id": 477056, "bug_id": 1340611, "comment": {"karma": 1, "karma_critpath": 1, "text": "This update does not fix bug 1367280.", "timestamp": "2016-08-26 04:41:06", "update_id": 65642, "user_id": 1011, "id": 477056, "testcase_feedback": [], "user": {"name": "frieben", "email": "jfrieben@hotmail.com", "id": 1011, "avatar": "https://seccdn.libravatar.org/avatar/96b0cc3adc98cd197d5fc309b9bc9079c6171ee02d4d109a2ef844ad9736a6ee?s=24&d=retro", "openid": "frieben.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 477115, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "Is it expected to see such messages in upgrade?\n\n`  Upgrading   : selinux-policy-targeted-3.13.1-211.fc25.noarch             5/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!` \n \n`  Upgrading   : docker-selinux-2:1.12.1-7.git49151a1.fc25.x86_64           6/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!`", "timestamp": "2016-08-26 06:43:24", "update_id": 65642, "user_id": 809, "id": 477115, "testcase_feedback": [], "user": {"name": "lslebodn", "email": "lslebodn@redhat.com", "id": 809, "avatar": "https://seccdn.libravatar.org/avatar/8c6fcfe0eec099f1f01f5c237935bb5c97f2063a5c1068e57c5815e0bfecbf70?s=24&d=retro", "openid": "lslebodn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitsssd"}]}}}, {"karma": 0, "comment_id": 481907, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "[root@omiday selinux]# last -n1 reboot\nreboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:09   still running\n\nwtmp begins Mon Jul 25 17:00:39 2016\n[root@omiday selinux]# ausearch -m avc -ts 23:09 | grep \"{ getattr }\"\ntype=AVC msg=audit(1472965784.408:145): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n\n\n(Possible) Related boot logs:\n\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Completing initialization.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\nSep 03 23:09:42 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 90.371ms.\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.204ms.\nSep 03 23:09:42 omiday.can.local systemd-journald[1080]: Journal started\nSep 03 23:09:41 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=11094 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=11092 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n \n", "timestamp": "2016-09-04 05:39:42", "update_id": 65642, "user_id": 2847, "id": 481907, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481908, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:39:55", "update_id": 65642, "user_id": 2847, "id": 481908, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481909, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:40", "update_id": 65642, "user_id": 2847, "id": 481909, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481910, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:53", "update_id": 65642, "user_id": 2847, "id": 481910, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481936, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "Sorry about the previous messed up report and empty submissions, here's a \nformatted one:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"{ getattr }\"\n    type=AVC msg=audit(1472968121.957:143): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    \n\nRelated boot logs:\n\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Completing initialization.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 76.855ms.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.613ms.\n    Sep 03 23:48:39 omiday.can.local systemd-journald[1093]: Journal started\n    Sep 03 23:48:39 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=1173 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=1171 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n", "timestamp": "2016-09-04 06:03:07", "update_id": 65642, "user_id": 2847, "id": 481936, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 1, "comment_id": 481937, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "WFM:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"firewalld\" \n    <no matches>\n    \n", "timestamp": "2016-09-04 06:09:52", "update_id": 65642, "user_id": 2847, "id": 481937, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481938, "bug_id": 1340611, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-04 06:10:31", "update_id": 65642, "user_id": 2847, "id": 481938, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 482239, "bug_id": 1340611, "comment": {"karma": 0, "karma_critpath": 0, "text": "In reply to \nhttps://bodhi.fedoraproject.org/updates/selinux-policy-3.13.1-211.fc25#comment-481907:\n\nI've just reviewed my prior feedbacks and realized that I should have submitted \nthe comments in Bugzilla. It's done, and please don't hate me, I'll make sure \nto review the docs next time...\n", "timestamp": "2016-09-05 03:10:27", "update_id": 65642, "user_id": 2847, "id": 482239, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 484803, "bug_id": 1340611, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2016-09-09 07:34:01", "update_id": 65642, "user_id": 284, "id": 484803, "testcase_feedback": [], "user": {"name": "cairo", "email": "hansmueller183@yahoo.com", "id": 284, "avatar": "https://seccdn.libravatar.org/avatar/65ac01c684e76450d8575348b4894728e9c69ffdbd7c08718a4156e8e0daf5b6?s=24&d=retro", "openid": "cairo.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}]}, {"bug_id": 1342732, "title": null, "security": false, "parent": false, "feedback": [{"karma": 1, "comment_id": 477056, "bug_id": 1342732, "comment": {"karma": 1, "karma_critpath": 1, "text": "This update does not fix bug 1367280.", "timestamp": "2016-08-26 04:41:06", "update_id": 65642, "user_id": 1011, "id": 477056, "testcase_feedback": [], "user": {"name": "frieben", "email": "jfrieben@hotmail.com", "id": 1011, "avatar": "https://seccdn.libravatar.org/avatar/96b0cc3adc98cd197d5fc309b9bc9079c6171ee02d4d109a2ef844ad9736a6ee?s=24&d=retro", "openid": "frieben.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 477115, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "Is it expected to see such messages in upgrade?\n\n`  Upgrading   : selinux-policy-targeted-3.13.1-211.fc25.noarch             5/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!` \n \n`  Upgrading   : docker-selinux-2:1.12.1-7.git49151a1.fc25.x86_64           6/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!`", "timestamp": "2016-08-26 06:43:24", "update_id": 65642, "user_id": 809, "id": 477115, "testcase_feedback": [], "user": {"name": "lslebodn", "email": "lslebodn@redhat.com", "id": 809, "avatar": "https://seccdn.libravatar.org/avatar/8c6fcfe0eec099f1f01f5c237935bb5c97f2063a5c1068e57c5815e0bfecbf70?s=24&d=retro", "openid": "lslebodn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitsssd"}]}}}, {"karma": 0, "comment_id": 481907, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "[root@omiday selinux]# last -n1 reboot\nreboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:09   still running\n\nwtmp begins Mon Jul 25 17:00:39 2016\n[root@omiday selinux]# ausearch -m avc -ts 23:09 | grep \"{ getattr }\"\ntype=AVC msg=audit(1472965784.408:145): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n\n\n(Possible) Related boot logs:\n\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Completing initialization.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\nSep 03 23:09:42 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 90.371ms.\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.204ms.\nSep 03 23:09:42 omiday.can.local systemd-journald[1080]: Journal started\nSep 03 23:09:41 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=11094 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=11092 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n \n", "timestamp": "2016-09-04 05:39:42", "update_id": 65642, "user_id": 2847, "id": 481907, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481908, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:39:55", "update_id": 65642, "user_id": 2847, "id": 481908, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481909, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:40", "update_id": 65642, "user_id": 2847, "id": 481909, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481910, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:53", "update_id": 65642, "user_id": 2847, "id": 481910, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481936, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "Sorry about the previous messed up report and empty submissions, here's a \nformatted one:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"{ getattr }\"\n    type=AVC msg=audit(1472968121.957:143): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    \n\nRelated boot logs:\n\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Completing initialization.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 76.855ms.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.613ms.\n    Sep 03 23:48:39 omiday.can.local systemd-journald[1093]: Journal started\n    Sep 03 23:48:39 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=1173 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=1171 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n", "timestamp": "2016-09-04 06:03:07", "update_id": 65642, "user_id": 2847, "id": 481936, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481937, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "WFM:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"firewalld\" \n    <no matches>\n    \n", "timestamp": "2016-09-04 06:09:52", "update_id": 65642, "user_id": 2847, "id": 481937, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481938, "bug_id": 1342732, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-04 06:10:31", "update_id": 65642, "user_id": 2847, "id": 481938, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 482239, "bug_id": 1342732, "comment": {"karma": 0, "karma_critpath": 0, "text": "In reply to \nhttps://bodhi.fedoraproject.org/updates/selinux-policy-3.13.1-211.fc25#comment-481907:\n\nI've just reviewed my prior feedbacks and realized that I should have submitted \nthe comments in Bugzilla. It's done, and please don't hate me, I'll make sure \nto review the docs next time...\n", "timestamp": "2016-09-05 03:10:27", "update_id": 65642, "user_id": 2847, "id": 482239, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 484803, "bug_id": 1342732, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2016-09-09 07:34:01", "update_id": 65642, "user_id": 284, "id": 484803, "testcase_feedback": [], "user": {"name": "cairo", "email": "hansmueller183@yahoo.com", "id": 284, "avatar": "https://seccdn.libravatar.org/avatar/65ac01c684e76450d8575348b4894728e9c69ffdbd7c08718a4156e8e0daf5b6?s=24&d=retro", "openid": "cairo.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}]}, {"bug_id": 1367280, "title": null, "security": false, "parent": false, "feedback": [{"karma": -1, "comment_id": 477056, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "This update does not fix bug 1367280.", "timestamp": "2016-08-26 04:41:06", "update_id": 65642, "user_id": 1011, "id": 477056, "testcase_feedback": [], "user": {"name": "frieben", "email": "jfrieben@hotmail.com", "id": 1011, "avatar": "https://seccdn.libravatar.org/avatar/96b0cc3adc98cd197d5fc309b9bc9079c6171ee02d4d109a2ef844ad9736a6ee?s=24&d=retro", "openid": "frieben.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 477115, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "Is it expected to see such messages in upgrade?\n\n`  Upgrading   : selinux-policy-targeted-3.13.1-211.fc25.noarch             5/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!` \n \n`  Upgrading   : docker-selinux-2:1.12.1-7.git49151a1.fc25.x86_64           6/24 ` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).` \n \n`/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument` \n \n`libsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).` \n \n`/usr/sbin/semodule:  Failed!`", "timestamp": "2016-08-26 06:43:24", "update_id": 65642, "user_id": 809, "id": 477115, "testcase_feedback": [], "user": {"name": "lslebodn", "email": "lslebodn@redhat.com", "id": 809, "avatar": "https://seccdn.libravatar.org/avatar/8c6fcfe0eec099f1f01f5c237935bb5c97f2063a5c1068e57c5815e0bfecbf70?s=24&d=retro", "openid": "lslebodn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitsssd"}]}}}, {"karma": -1, "comment_id": 481907, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "[root@omiday selinux]# last -n1 reboot\nreboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:09   still running\n\nwtmp begins Mon Jul 25 17:00:39 2016\n[root@omiday selinux]# ausearch -m avc -ts 23:09 | grep \"{ getattr }\"\ntype=AVC msg=audit(1472965784.408:145): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n\n\n(Possible) Related boot logs:\n\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\nSep 03 23:09:42 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Completing initialization.\nSep 03 23:09:42 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\nSep 03 23:09:42 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 90.371ms.\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\nSep 03 23:09:42 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.204ms.\nSep 03 23:09:42 omiday.can.local systemd-journald[1080]: Journal started\nSep 03 23:09:41 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=11094 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=11093 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\nSep 03 23:09:42 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=11092 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n \n", "timestamp": "2016-09-04 05:39:42", "update_id": 65642, "user_id": 2847, "id": 481907, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481908, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:39:55", "update_id": 65642, "user_id": 2847, "id": 481908, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481909, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:40", "update_id": 65642, "user_id": 2847, "id": 481909, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481910, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-04 05:40:53", "update_id": 65642, "user_id": 2847, "id": 481910, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481936, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "Sorry about the previous messed up report and empty submissions, here's a \nformatted one:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"{ getattr }\"\n    type=AVC msg=audit(1472968121.957:143): avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    \n\nRelated boot logs:\n\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: 32768 avtab hash slots, 105642 rules.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  8 users, 14 roles, 5046 types, 305 bools, 1 sens, 1024 cats\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  94 classes, 105642 rules\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission validate_trans in class security not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Permission module_load in class system not defined in policy.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux: the above unknown classes and permissions will be allowed\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Completing initialization.\n    Sep 03 23:48:39 omiday.can.local kernel: SELinux:  Setting up existing superblocks.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Successfully loaded SELinux policy in 76.855ms.\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/fifo: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/blk: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Unable to fix SELinux security context of /run/systemd/inaccessible/chr: Permission denied\n    Sep 03 23:48:39 omiday.can.local systemd[1]: Relabelled /dev and /run in 20.613ms.\n    Sep 03 23:48:39 omiday.can.local systemd-journald[1093]: Journal started\n    Sep 03 23:48:39 omiday.can.local audit: MAC_STATUS enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit: MAC_POLICY_LOAD policy loaded auid=4294967295 ses=4294967295\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelto } for  pid=1 comm=\"systemd\" name=\"fifo\" dev=\"tmpfs\" ino=1173 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:init_var_run_t:s0 tclass=fifo_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { getattr } for  pid=1 comm=\"systemd\" path=\"/run/systemd/inaccessible/blk\" dev=\"tmpfs\" ino=1172 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=blk_file permissive=0\n    Sep 03 23:48:39 omiday.can.local audit[1]: AVC avc:  denied  { relabelfrom } for  pid=1 comm=\"systemd\" name=\"chr\" dev=\"tmpfs\" ino=1171 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=chr_file permissive=0\n", "timestamp": "2016-09-04 06:03:07", "update_id": 65642, "user_id": 2847, "id": 481936, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481937, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "WFM:\n\n    [root@omiday ~]# last -n1 reboot\n    reboot   system boot  4.8.0-0.rc4.git0 Sat Sep  3 23:48   still running\n\n    wtmp begins Mon Jul 25 17:00:39 2016\n\n    [root@omiday ~]# ausearch -m avc -ts 23:48 | grep \"firewalld\" \n    <no matches>\n    \n", "timestamp": "2016-09-04 06:09:52", "update_id": 65642, "user_id": 2847, "id": 481937, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 481938, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-04 06:10:31", "update_id": 65642, "user_id": 2847, "id": 481938, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 482239, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "In reply to \nhttps://bodhi.fedoraproject.org/updates/selinux-policy-3.13.1-211.fc25#comment-481907:\n\nI've just reviewed my prior feedbacks and realized that I should have submitted \nthe comments in Bugzilla. It's done, and please don't hate me, I'll make sure \nto review the docs next time...\n", "timestamp": "2016-09-05 03:10:27", "update_id": 65642, "user_id": 2847, "id": 482239, "testcase_feedback": [], "user": {"name": "viorel", "email": "viorel.tabara@infrabit.net", "id": 2847, "avatar": "https://seccdn.libravatar.org/avatar/b37136695bd5bd05ec1c2d5668bbf07b766a1d566877cc86b4d1f096df9530b9?s=24&d=retro", "openid": "viorel.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 484803, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2016-09-09 07:34:01", "update_id": 65642, "user_id": 284, "id": 484803, "testcase_feedback": [], "user": {"name": "cairo", "email": "hansmueller183@yahoo.com", "id": 284, "avatar": "https://seccdn.libravatar.org/avatar/65ac01c684e76450d8575348b4894728e9c69ffdbd7c08718a4156e8e0daf5b6?s=24&d=retro", "openid": "cairo.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 488728, "bug_id": 1367280, "comment": {"karma": 0, "karma_critpath": 0, "text": "I see this during update:\n\n    Re-declaration of type udisks2_t\n    Failed to create node\n    Bad type declaration at /var/lib/selinux/targeted/tmp/modules/100/udisks2/cil:1\n    /usr/sbin/semodule:  Failed!\n", "timestamp": "2016-09-16 06:58:26", "update_id": 67728, "user_id": 411, "id": 488728, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 1, "comment_id": 490333, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "seems to fix stuff", "timestamp": "2016-09-19 14:56:26", "update_id": 67728, "user_id": 411, "id": 490333, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 490724, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "seems to work fine ", "timestamp": "2016-09-20 13:31:15", "update_id": 67728, "user_id": 92, "id": 490724, "testcase_feedback": [], "user": {"name": "ausil", "email": "dennis@ausil.us", "id": 92, "avatar": "https://seccdn.libravatar.org/avatar/3d919a6fbd80b93c77f1ddbd2484b534e2e94df434aa0cd19981e60647014952?s=24&d=retro", "openid": "ausil.id.stg.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "fedora-contributor"}, {"name": "sysadmin"}, {"name": "fedora-s390"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "centosproject-email-aliases"}, {"name": "fedora-arm"}, {"name": "ambassadors"}, {"name": "sig-paas"}, {"name": "sysadmin-cvs"}, {"name": "cvsadmin"}, {"name": "fedora-ppc"}, {"name": "fedorabugs"}, {"name": "arm-qa"}, {"name": "trust admins"}, {"name": "sig-cloud"}]}}}, {"karma": 0, "comment_id": 490741, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "Seems OK on ARM/Power64", "timestamp": "2016-09-20 15:08:21", "update_id": 67728, "user_id": 96, "id": 490741, "testcase_feedback": [], "user": {"name": "pbrobinson", "email": "pbrobinson@gmail.com", "id": 96, "avatar": "https://seccdn.libravatar.org/avatar/3bac3f1833b19f5b5e62e166d64737430603201d1513dcc33a8c147d702a2e7d?s=24&d=retro", "openid": "pbrobinson.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "fedora-s390"}, {"name": "gitfedora-arm-installer"}, {"name": "gitspin-kickstarts"}, {"name": "fedorabugs"}, {"name": "fedora-ppc"}, {"name": "alt-sugar"}, {"name": "torrentadmin"}, {"name": "sysadmin-cvs"}, {"name": "gitfedora-wiki"}, {"name": "sysadmin-releng"}, {"name": "aarch64"}, {"name": "sysadmin"}, {"name": "signed_fpca"}, {"name": "fedora-arm"}, {"name": "sysadmin-secondary"}, {"name": "iot"}, {"name": "ipausers"}, {"name": "arm-qa"}, {"name": "fedora-contributor"}, {"name": "gitpungi"}, {"name": "cvsadmin"}]}}}, {"karma": 0, "comment_id": 490754, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "Working ok here. ", "timestamp": "2016-09-20 16:59:33", "update_id": 67728, "user_id": 1201, "id": 490754, "testcase_feedback": [], "user": {"name": "pwhalen", "email": "pwhalen@redhat.com", "id": 1201, "avatar": "https://seccdn.libravatar.org/avatar/949817e6ad6dae00b4482d198ad85f08e8758e122e977f8b28c8ce221585ca83?s=24&d=retro", "openid": "pwhalen.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-secondary"}, {"name": "iot"}, {"name": "arm-qa"}, {"name": "fedora-arm"}, {"name": "gitarm"}, {"name": "gitfedora-arm-installer"}]}}}, {"karma": 0, "comment_id": 490980, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-20 22:17:55", "update_id": 67728, "user_id": 137, "id": 490980, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "epel-packagers-sig"}]}}}, {"karma": 1, "comment_id": 491256, "bug_id": 1367280, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2016-09-21 11:24:37", "update_id": 67728, "user_id": 1557, "id": 491256, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 492821, "bug_id": 1367280, "comment": {"karma": -1, "karma_critpath": 1, "text": "```\n  Upgrading   : selinux-policy-3.13.1-214.fc25.noarch                                             18/433 \n/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).\n/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument\nlibsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).\n/etc/selinux/targeted/contexts/files/file_contexts: Multiple different specifications for /var/lib/kubelet(/.*)?  (system_u:object_r:svirt_sandbox_file_t:s0 and system_u:object_r:docker_var_lib_t:s0).\n/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument\nlibsemanage.semanage_install_final_tmp: setfiles returned error code 1. (No such file or directory).\nsemodule:  Failed!\n  Upgrading   : selinux-policy-targeted-3.13.1-214.fc25.noarch                                    19/433 \nRe-declaration of type udisks2_t\nFailed to create node\nBad type declaration at /var/lib/selinux/targeted/tmp/modules/100/udisks2/cil:1\n/usr/sbin/semodule:  Failed!\n  Upgrading   : libwinpr-2:2.0.0-12.20160909git1855e36.fc25.x86_64                                20/433 \n  Installing  : python2-lxml-3.6.4-1.fc25.x86_64                                                  21/433 \n  Upgrading   : docker-selinux-2:1.12.1-13.git9a3752d.fc25.x86_64                                 22/433 \nRe-declaration of type udisks2_t\nFailed to create node\nBad type declaration at /var/lib/selinux/targeted/tmp/modules/100/udisks2/cil:1\n/usr/sbin/semodule:  Failed!\n```", "timestamp": "2016-09-23 15:19:31", "update_id": 67728, "user_id": 535, "id": 492821, "testcase_feedback": [], "user": {"name": "sgallagh", "email": "sgallagh@redhat.com", "id": 535, "avatar": "https://seccdn.libravatar.org/avatar/bf298fff6edef11d0f53e6bd1fb1e649c131b75ad7200ab134883e8603591405?s=24&d=retro", "openid": "sgallagh.id.stg.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "nodejs-sig"}, {"name": "eln-sig"}, {"name": "gitding-libs"}, {"name": "gitroller-derby"}, {"name": "communishift"}, {"name": "sysadmin-noc"}, {"name": "gitnodejs-packaging"}, {"name": "fedorabugs"}, {"name": "signed_fpca"}, {"name": "gitspin-kickstarts"}, {"name": "fesco"}, {"name": "epel-cabal"}, {"name": "gitsssd"}, {"name": "sysadmin"}, {"name": "modularity-wg"}, {"name": "cockpit-jenkins"}, {"name": "gitcura"}, {"name": "gitrolekit"}, {"name": "ipausers"}, {"name": "gitelapi"}, {"name": "cockpitteam"}, {"name": "server-wg"}, {"name": "fedora-contributor"}, {"name": "summer-coding"}, {"name": "bind-dyndb-ldap"}, {"name": "sysadmin-odcs"}, {"name": "gitlab-fedora-admin"}, {"name": "sysadmin-eln"}]}}}]}], "updateid": "FEDORA-2016-cbdde50ec4", "karma": 6, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}