selinux is preveting to login after lightdm update
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Light Display Manager |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Hello,
I just update lightdm from version 1.10.6 to 1.19.3 on my Fedora 24 Cinnamon.
When I try to login, I receive a message with selinux:
SELinux is preventing cinnamon-sessio from write access on the file .ICEauthority-c.
***** Plugin catchall (100. confidence) suggests *******
If you believe that cinnamon-sessio should be allowed write access on the .ICEauthority-c file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# ausearch -c 'cinnamon-sessio' --raw | audit2allow -M my-cinnamonsessio
# semodule -X 300 -i my-cinnamonsess
Additional Information:
Source Context system_
Target Context system_
Target Objects .ICEauthority-c [ file ]
Source cinnamon-sessio
Source Path cinnamon-sessio
Port <Unknown>
Host XPS13
Source RPM Packages
Target RPM Packages
Policy RPM selinux-
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name XPS13
Platform Linux XPS13 4.6.4-301.
Alert Count 78
First Seen 2016-07-21 01:26:55 CEST
Last Seen 2016-07-23 14:53:57 CEST
Local ID 3b219ff9-
Raw Audit Messages
type=AVC msg=audit(
Hash: cinnamon-
LightDM doesn't provide any SELinux rules, I suspect the correct place to fix this issue is in the cinnamon-session package in Fedora.