-
Notifications
You must be signed in to change notification settings - Fork 59
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
F33: chrony.dhcp-propagation test failing #643
Comments
@dustymabe Thanks for tracking down this issue. I will dig into it and update this ticket with my findings. |
The ext.config.chrony.dhcp-propagation test is failing on Fedora 33 for now. Exclude running the test on `next` and `next-devel`. coreos/fedora-coreos-tracker#643
The ext.config.chrony.dhcp-propagation test is failing on Fedora 33 for now. Exclude running the test on `next` and `next-devel`. coreos/fedora-coreos-tracker#643 (cherry picked from commit a666d0e)
The ext.config.chrony.dhcp-propagation test is failing on Fedora 33 for now. Exclude running the test on `next` and `next-devel`. coreos/fedora-coreos-tracker#643
The ext.config.chrony.dhcp-propagation test is failing on Fedora 33 for now. Exclude running the test on `next` and `next-devel`. coreos/fedora-coreos-tracker#643
Alright, after synchronous debugging with @dustymabe, it looks like the
A quick fix for this issue is to set |
Does it work to |
If changing the file type doesn't help then usual SOP here is to file a Bugzilla against In this case though I think it is by far the simplest to change the target file type. |
FWIW, this a known issue with F-33: https://bugzilla.redhat.com/show_bug.cgi?id=1880948 |
I talked with Zdenek and it's on his radar. Also proposed the bug as a Fedora 33 Freeze Exception. |
OK one thing I had missed is that the condition
is now triggering in f33, so any fix like the chcon above needs to go in chrony itself. |
There are 2 PRs in place now which could address the issue. Frankly, I am not convinced it covers all scenarios, but I failed to reproduce the AVCs as reported by other users. fedora-selinux/selinux-policy-contrib#344 Please review if you can. |
I just tested these changes on F-33 and the |
The fix for this went into next stream release |
The ext.config.chrony.dhcp-propagation test is failing on Fedora 33 for now. Exclude running the test on `next` and `next-devel`. coreos/fedora-coreos-tracker#643
This reverts commit coreos@0f46156. The new version SELinux policy(3.14.6-29) for f-33 fixes an issue with the chronyd from reading the sources file that allows chrony to read NTP server data propagated via DHCP. Closes: coreos/fedora-coreos-tracker#643
This test is failing in the Fedora 33 rebase (coreos/fedora-coreos-config#640). We'll disable the test for now to unblock. @sohankunkerkar can you take a look?
Test failure details:
The text was updated successfully, but these errors were encountered: