stable

container-selinux-2.195.0-1.fc38

FEDORA-2022-20206b2c09 created by dwalsh 2 years ago for Fedora 38

Automatic update for container-selinux-2.195.0-1.fc38.

Changelog
* Wed Dec 14 2022 Daniel J Walsh <dwalsh@redhat.com> 2:2.195.0-1
- local build

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-20206b2c09

This update was automatically created

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update's test gating status has been changed to 'passed'.

2 years ago

This update has been submitted for stable by bodhi

2 years ago
User Icon adamwill commented & provided feedback 2 years ago
karma

I think this may have broken podman. openQA podman tests started failing after this update landed, journal shows a ton of denials like this:

Dec 14 13:12:20 podman001.test.openqa.fedoraproject.org audit[3443]: AVC avc:  denied  { open } for  pid=3443 comm="sh" path="/dev/tty" dev="tmpfs" ino=8 scontext=system_u:system_r:container_t:s0:c301,c884 tcontext=system_u:object_r:container_file_t:s0:c301,c884 tclass=chr_file permissive=0
Dec 14 13:12:21 podman001.test.openqa.fedoraproject.org audit[3445]: AVC avc:  denied  { open } for  pid=3445 comm="sh" path="/dev/tty" dev="tmpfs" ino=8 scontext=system_u:system_r:container_t:s0:c301,c884 tcontext=system_u:object_r:container_file_t:s0:c301,c884 tclass=chr_file permissive=0
Dec 14 13:12:21 podman001.test.openqa.fedoraproject.org audit[3449]: AVC avc:  denied  { open } for  pid=3449 comm="sh" path="/dev/tty" dev="tmpfs" ino=8 scontext=system_u:system_r:container_t:s0:c301,c884 tcontext=system_u:object_r:container_file_t:s0:c301,c884 tclass=chr_file permissive=0
Dec 14 13:12:21 podman001.test.openqa.fedoraproject.org audit[3450]: AVC avc:  denied  { open } for  pid=3450 comm="sh" path="/dev/tty" dev="tmpfs" ino=8 scontext=system_u:system_r:container_t:s0:c301,c884 tcontext=system_u:object_r:container_file_t:s0:c301,c884 tclass=chr_file permissive=0
Dec 14 13:12:21 podman001.test.openqa.fedoraproject.org audit[3452]: AVC avc:  denied  { open } for  pid=3452 comm="sh" path="/dev/tty" dev="tmpfs" ino=8 scontext=system_u:system_r:container_t:s0:c301,c884 tcontext=system_u:object_r:container_file_t:s0:c301,c884 tclass=chr_file permissive=0

that's just a sample, there are dozens more.

Good catch, I will pull and get a new release out ASAP.

Thanks, new release seems fine (openQA tests haven't started failing again since it landed).


Please login to add feedback.

Metadata
Type
unspecified
Karma
-1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
0 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago

Automated Test Results