Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 1316866 - Unexpected message: avc: denied { mounton } for pid=1335 comm="(imesyncd)"
Summary: Unexpected message: avc: denied { mounton } for pid=1335 comm="(imesyncd)"
Keywords:
Status: CLOSED DUPLICATE of bug 1317927
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy
Version: 24
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: ---
Assignee: Miroslav Grepl
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-03-11 10:33 UTC by Marius Vollmer
Modified: 2016-04-25 07:59 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-03-16 15:13:42 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Marius Vollmer 2016-03-11 10:33:53 UTC 
Description of problem:

When running the cockpit integration tests on a loaded machine, we see this message in the logs:

audit: type=1400 audit(1457687544.471:269): avc: denied { mounton } for pid=1335 comm="(imesyncd)" path="/etc" dev="dm-0" ino=4194401 scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=dir permissive=0

This doesn't seem to happen when running the same test on a idle machine.

Version-Release number of selected component (if applicable):
selinux-policy-targeted-3.13.1-176.fc24.noarch

How reproducible:
Always on the CI machines, never locally
Comment 1 Daniel Walsh 2016-03-11 13:43:40 UTC 
I see this also on F24, Why isn't init_t an unconfined domain?
Comment 2 Lukas Vrabec 2016-03-16 15:13:42 UTC 

*** This bug has been marked as a duplicate of bug 1317927 ***
Note You need to log in before you can comment on or make changes to this bug.