but it bring a regression, I can't start TPM VMs with this version. I downgraded to selinux-policy-40.13-1.fc40.noarch
and selinux-policy-targeted-40.13-1.fc40.noarch and VMs can be created again with TPM enabled.
Well, I tested it downgrading the selinux-policy. The other package that could be involved on this (TPM emulator) is swtpm, and its the same since 01-28-2024 (swtpm-0.8.1-5.fc40 )
This update has been submitted for testing by zpytela.
This update's test gating status has been changed to 'waiting'.
This update has obsoleted selinux-policy-40.14-2.fc40, and has inherited its bugs and notes.
This update has been pushed to testing.
This update's test gating status has been changed to 'passed'.
This update can be pushed to stable now if the maintainer wishes
Working fine.
krb5kdc and kadmind daemons are working with Berkeley DB backend with this update.
no issues
oh dear, after e few days, now SELinux stops the creation of new VMs with TPM enabled:
Yeah, I opened the bug reports. when set selinux to permissive the new VMs with TPM can be created. Will change karma here to reflect this.
Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
@geraldosimiao, you should give negative karma if this update brings a regression. Otherwise I don't see the point.
but it bring a regression, I can't start TPM VMs with this version. I downgraded to selinux-policy-40.13-1.fc40.noarch and selinux-policy-targeted-40.13-1.fc40.noarch and VMs can be created again with TPM enabled.
We usually don't remove existing permissions, so I wonder why updating would make anything worse. Are you sure no other package was updated?
Well, I tested it downgrading the selinux-policy. The other package that could be involved on this (TPM emulator) is swtpm, and its the same since 01-28-2024 (swtpm-0.8.1-5.fc40 )
No problems reported with selinux-policy-40.15-1.fc40.noarch on Fedora 40 GNOME desktop usage
Works.
This update has been obsoleted by selinux-policy-40.16-1.fc40.