Policy is outdated and broken
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
refpolicy-ubuntu (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
The selinux-
The selinux-
In addition, there is something wrong with the MCS pieces of this policy. When using this policy, ssh access is denied with:
type=AVC msg=audit(
Commenting out the "mlsconstrain process { transition dyntransition }" constraint in policy/mcs fixes this problem, although I don't know enough about the internals of MCS to determine the root cause of this issue.
I suggest removing this package from the repository, or at least updating the package description to direct users to the selinux-
Status changed to 'Confirmed' because the bug affects multiple users.