Re: Fedora 14 NTP and SELinux
On Mon, Nov 29, 2010 at 11:35:05AM +0530, Rahul Sundaram wrote: > > Read a couple of reviews and blog posts mentioning this, if you use ntp > via firstboot in Fedora 14 and you login, you get SELinux warnings on > login. Do you mean something like these in logs? NULL security context for user, but SELinux in permissive mode, continuing () NULL security context for user, but SELinux in permissive mode, continuing () NULL security context for user, but SELinux in permissive mode, continuing () NULL security context for user, but SELinux in permissive mode, continuing () NULL security context for user, but SELinux in permissive mode, continuing () NULL security context for user, but SELinux in permissive mode, continuing () I am getting these on machines upgraded from Fedora 12 to 14 and that is after autorelabel and 'restorecon -RF ...' on various directories. These are from /var/log/cron and there is not much more anywhere which would allow to define local policies to get around that. All these machines had no problems with SELinux before an upgrade. Originally after an upgrade and after an initial relabelling it was impossible to login with SELinux in an enforcing mode (at least remotely and that is pretty nasty if you do not have a local console) but more relabelling apparently helped with that. I am also collecting these: Unauthorized SELinux context, but SELinux in permissive mode, continuing (/etc/ crontab) Unauthorized SELinux context, but SELinux in permissive mode, continuing (/etc/ cron.d/sa-update) Unauthorized SELinux context, but SELinux in permissive mode, continuing (/etc/ cron.d/smolt) Unauthorized SELinux context, but SELinux in permissive mode, continuing (/etc/ cron.d/0hourly) Unauthorized SELinux context, but SELinux in permissive mode, continuing (/var/ spool/cron/root) selinux-policy-targeted-3.9.7-12.fc14 if somebody cares. > I tried testing this in a vm and this is very much reproducible > and is such a jarring user experience. I should likely write bugzilla reports but I sort of gave up on SELinux and do expect nasty things after every upgrade so these are at the very bottom of my queue. An impossible to understand and control security is of not a real use. Michal -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
Re: Fedora 14 NTP and SELinux
On 11/29/2010 11:55 AM, Gregory Maxwell wrote: > On Mon, Nov 29, 2010 at 1:05 AM, Rahul Sundaram wrote: >> Hi >> >> Read a couple of reviews and blog posts mentioning this, if you use ntp >> via firstboot in Fedora 14 and you login, you get SELinux warnings on >> login. I tried testing this in a vm and this is very much reproducible >> and is such a jarring user experience. What can we do to avoid these >> class of problems for the next release? > Not having so many fedora developers, testers, and redhat staff > running with selinux in disabled/in permissive mode would be a good > start. That's a bit of chicken and egg problem. > Can you link to the reviews? I'm pretty sure I enabled ntp in first > boot on all the systems I've installed F14 on and I don't recall > seeing alerts on the first login— and it's something I would have > reported if I noticed it. I don't have all of them but here are a few links http://ignore-your.tv/2010/11/14/fedora-14/ http://www.dedoimedo.com/computers/fedora-14.html https://bugzilla.redhat.com/show_bug.cgi?id=622796 Rahul -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
Re: Fedora 14 NTP and SELinux
On Mon, Nov 29, 2010 at 1:05 AM, Rahul Sundaram wrote: > Hi > > Read a couple of reviews and blog posts mentioning this, if you use ntp > via firstboot in Fedora 14 and you login, you get SELinux warnings on > login. I tried testing this in a vm and this is very much reproducible > and is such a jarring user experience. What can we do to avoid these > class of problems for the next release? Not having so many fedora developers, testers, and redhat staff running with selinux in disabled/in permissive mode would be a good start. Can you link to the reviews? I'm pretty sure I enabled ntp in first boot on all the systems I've installed F14 on and I don't recall seeing alerts on the first login— and it's something I would have reported if I noticed it. -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
Fedora 14 NTP and SELinux
Hi Read a couple of reviews and blog posts mentioning this, if you use ntp via firstboot in Fedora 14 and you login, you get SELinux warnings on login. I tried testing this in a vm and this is very much reproducible and is such a jarring user experience. What can we do to avoid these class of problems for the next release? Rahul -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
Fedora 12 updates-testing report
The following Fedora 12 Security updates need testing: https://admin.fedoraproject.org/updates/mailman-2.1.12-10.fc12 https://admin.fedoraproject.org/updates/wireshark-1.2.13-1.fc12 https://admin.fedoraproject.org/updates/kdenetwork-4.4.5-4.fc12 https://admin.fedoraproject.org/updates/openconnect-2.26-1.fc12 https://admin.fedoraproject.org/updates/clamav-0.96.4-1200.fc12 The following Fedora 12 Critical Path updates have yet to be approved: https://admin.fedoraproject.org/updates/pungi-2.0.20.1-1.fc12 https://admin.fedoraproject.org/updates/findutils-4.4.2-7.fc12 https://admin.fedoraproject.org/updates/nss-softokn-3.12.4-16.fc12 https://admin.fedoraproject.org/updates/xorg-x11-drv-ati-6.13.0-0.22.20100316git819b4015.fc12 https://admin.fedoraproject.org/updates/util-linux-ng-2.16.2-4.fc12 https://admin.fedoraproject.org/updates/xorg-x11-drv-synaptics-1.2.0-3.fc12 https://admin.fedoraproject.org/updates/findutils-4.4.2-5.fc12 The following builds have been pushed to Fedora 12 updates-testing libimobiledevice-1.0.4-1.fc12 translate-toolkit-1.8.1-1.fc12 Details about builds: libimobiledevice-1.0.4-1.fc12 (FEDORA-2010-18284) Library for connecting to mobile devices Update Information: New 1.0.4 release - Fix a possible crash in lockdownd_client_new_with_handshake() - Do not not check for Swig/Python if --without-swig is set - Fail with an error message if libgcrypt is not found - Pass host certificate with GNUTLS correctly - Fix connecting to iOS 4.2.1+ devices ChangeLog: * Sun Nov 28 2010 Peter Robinson 1.0.4-1 - New 1.0.4 release translate-toolkit-1.8.1-1.fc12 (FEDORA-2010-18289) Tools to assist with translation and software localization Update Information: **Update to 1.8.1** File formats: - A rewrite and major improvement of the html format - New JSON format introduced - Support for Universal Terminology Exchange (UTX) format - Support for Java properties files encoded in UTF-8 - Improvements to CSV format, and improved compatibility with Excel exports - Bug fixes to Qt ts - Support for XLIFF's state attributes (pocount now lists detailed state statistics) - Minor bug fixes for PHP format Major performance improvements to quality checks Other improvements: - Improvements to stability of Lucene text indexing (affecting Pootle) - Parameter for po2prop to ignore untranslated strings - Many improvements to pot2po including Qt ts support, improved handling of extra XML namespaces in XLIFF, and performance improvements. ChangeLog: * Fri Nov 19 2010 Dwayne Bailey - 1.8.1-1 - Update to 1.8.1 - File formats: - A rewrite and major improvement of the html format - New JSON format introduced - Support for Universal Terminology Exchange (UTX) format - Support for Java properties files encoded in UTF-8 - Improvements to CSV format, and improved compatibility with Excel exports - Bug fixes to Qt ts - Support for XLIFF's state attributes (pocount now lists detailed state statistics) - Minor bug fixes for PHP format - Major performance improvements to quality checks - Other improvements: - Improvements to stability of Lucene text indexing (affecting Pootle) - Parameter for po2prop to ignore untranslated strings - Many improvements to pot2po including Qt ts support, improved handling of extra XML namespaces in XLIFF, and performance improvements. - Refresh stoplist location patch -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
Fedora 13 updates-testing report
The following Fedora 13 Security updates need testing:
https://admin.fedoraproject.org/updates/udev-153-5.fc13
https://admin.fedoraproject.org/updates/mailman-2.1.12-16.fc13
https://admin.fedoraproject.org/updates/wireshark-1.2.13-1.fc13
https://admin.fedoraproject.org/updates/libvpx-0.9.5-2.fc13
https://admin.fedoraproject.org/updates/openconnect-2.26-2.fc13
The following Fedora 13 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/curl-7.20.1-5.fc13
https://admin.fedoraproject.org/updates/elfutils-0.150-1.fc13
https://admin.fedoraproject.org/updates/udev-153-5.fc13
https://admin.fedoraproject.org/updates/livecd-tools-13.0-1.fc13
https://admin.fedoraproject.org/updates/gnome-desktop-2.30.2-1.fc13
https://admin.fedoraproject.org/updates/mingetty-1.08-6.fc13
https://admin.fedoraproject.org/updates/sendmail-8.14.4-6.fc13
https://admin.fedoraproject.org/updates/hunspell-1.2.8-18.fc13
https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13
https://admin.fedoraproject.org/updates/openldap-2.4.21-11.fc13
https://admin.fedoraproject.org/updates/nss-3.12.7-4.fc13,nss-util-3.12.7-2.fc13,nss-softokn-3.12.7-3.fc13,nspr-4.8.6-1.fc13
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc13
The following builds have been pushed to Fedora 13 updates-testing
djmount-0.71-2.fc13
gourmet-0.15.6-3.fc13
ldc-0.9.2-25.20101114hg1698.fc13
libimobiledevice-1.0.4-1.fc13
remmina-0.7.5-3.fc13
translate-toolkit-1.8.1-1.fc13
Details about builds:
djmount-0.71-2.fc13 (FEDORA-2010-18291)
Mount MediaServers content as a Linux file system
Update Information:
Initial package build.
References:
[ 1 ] Bug #583105 - Review Request: djmount - Mount MediaServers content as a
Linux file system
https://bugzilla.redhat.com/show_bug.cgi?id=583105
gourmet-0.15.6-3.fc13 (FEDORA-2010-18154)
Recipe Manager for the GNOME desktop environment
Update Information:
Update to newest upstream version. Includes upstream backported patches for
python-sqlalchemy compatibility.
ChangeLog:
* Wed Nov 24 2010 Jef Spaleta - 0.15.6-3
- Apply upstream patch for old db comptability
* Wed Nov 24 2010 Jef Spaleta - 0.15.6-2
- Apply upstream patch for old db comptability
* Mon Nov 15 2010 Jeff Raber - 0.15.6-1
- New upstream point release, bug fixes
* Wed Jul 21 2010 David Malcolm - 0.15.4-5
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
References:
[ 1 ] Bug #641743 - [abrt] gourmet-0.15.4-5.fc14:
expression.py:1375:__nonzero__:TypeError: Boolean value of this clause is not
defined
https://bugzilla.redhat.com/show_bug.cgi?id=641743
[ 2 ] Bug #656951 - [abrt] gourmet-0.15.6-1.fc14:
db.py:891:add_column_to_table:AttributeError: 'Float' object has no attribute
'get_col_spec'
https://bugzilla.redhat.com/show_bug.cgi?id=656951
ldc-0.9.2-25.20101114hg1698.fc13 (FEDORA-2010-18300)
A compiler for the D programming language
Update Information:
Here is where you
give an explanation of
your update.
Update to latest revision
Here is where you
give an explanation of
your update.
ChangeLog:
* Sun Nov 14 2010 Jonathan MERCIER
0.9.2-25.20101114hg1698
- update to latest revision 1698
- several bug fix
* Wed Oct 20 2010 Jonathan MERCIER
0.9.2-23.20101004hg1666
- add patch for llvm 2.8
* Fri Oct 15 2010 Jonathan MERCIER
0.9.2-22.20101004hg1666
- update to new release 1666
* Sat Sep 18 2010 Jonathan MERCIER
0.9.2-21.20100928hg1665
- update to new release 1665
* Sat Sep 18 2010 Jonathan MERCIER
0.9.2-20.20100927hg1664
- update to new release 1664
* Sat Sep 18 2010 Jonathan MERCIER
0.9.2-19.20100905hg1659
- update to new release 1659
* Sat Sep 4 2010 Jonathan MERCIER
0.9.2-18.20100904hg1657
- update to new release 1657
* Thu Aug 26 2010 Jonathan MERCIER
0.9.2-17.20100609hg1655
- use %{_libdir} instead %{_libdir}/d
Fedora 14 updates-testing report
The following Fedora 14 Security updates need testing: https://admin.fedoraproject.org/updates/libvpx-0.9.5-2.fc14 https://admin.fedoraproject.org/updates/mailman-2.1.13-6.fc14.1 https://admin.fedoraproject.org/updates/exim-4.72-2.fc14 https://admin.fedoraproject.org/updates/openconnect-2.26-4.fc14 The following Fedora 14 Critical Path updates have yet to be approved: https://admin.fedoraproject.org/updates/xfce4-notifyd-0.2.0-1.fc14 https://admin.fedoraproject.org/updates/openldap-2.4.23-4.fc14 https://admin.fedoraproject.org/updates/makebootfat-1.4-11.fc14 https://admin.fedoraproject.org/updates/perl-5.12.2-138.fc14 https://admin.fedoraproject.org/updates/perl-5.12.2-137.fc14 https://admin.fedoraproject.org/updates/libwnck-2.30.4-1.fc14 The following builds have been pushed to Fedora 14 updates-testing couchdb-glib-0.7.0-1.fc14 directfb-1.4.11-1.fc14 emelfm2-0.7.4-1.fc14 evolution-couchdb-0.5.1-1.fc14 gourmet-0.15.6-3.fc14 jack-rack-1.4.7-7.fc14 ldc-0.9.2-25.20101114hg1698.fc14 libimobiledevice-1.0.4-1.fc14 libxml++-2.33.1-1.fc14 remmina-0.7.5-3.fc14 translate-toolkit-1.8.1-1.fc14 w3c-markup-validator-1.1-2.fc14 xfce4-notifyd-0.2.0-1.fc14 xorg-x11-drv-ivtv-1.1.1-3.fc14 Details about builds: couchdb-glib-0.7.0-1.fc14 (FEDORA-2010-18296) A glib api to access CouchDB servers ChangeLog: * Sun Nov 28 2010 Peter Robinson 0.7.0-1 - New upstream 0.7.0 release directfb-1.4.11-1.fc14 (FEDORA-2010-18294) Graphics abstraction library for the Linux Framebuffer Device Update Information: Update to lastest current bugfix from 1.4: http://www.directfb.org/downloads/Core/DirectFB-1.4/NEWS ChangeLog: * Wed Nov 24 2010 Nicolas Chauvet - 1.4.11-1 - Update to 1.4.11 References: [ 1 ] Bug #655958 - directfb-1.4.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=655958 emelfm2-0.7.4-1.fc14 (FEDORA-2010-18293) File manager that implements the popular two-pane design Update Information: This update fixes a problem with file-alteration-monitoring and a some more bugs. For the complete list of changes see http://emelfm2.net/wiki/ChangeLog ChangeLog: * Sun Nov 28 2010 Christoph Wickert - 0.7.4-1 - Update to 0.7.4 evolution-couchdb-0.5.1-1.fc14 (FEDORA-2010-18296) An evolution backend to CouchDBs for PIM information ChangeLog: * Sun Nov 28 2010 Peter Robinson 0.5.1-1 - Update to 0.5.1 upstream release * Sat Oct 16 2010 Peter Robinson 0.5.0-2 - Bump build gourmet-0.15.6-3.fc14 (FEDORA-2010-18161) Recipe Manager for the GNOME desktop environment Update Information: New upstream version and an upstream patch for sqlalchemy compatibility issues. ChangeLog: * Wed Nov 24 2010 Jef Spaleta - 0.15.6-3 - Apply upstream patch for old db comptability * Wed Nov 24 2010 Jef Spaleta - 0.15.6-2 - Apply upstream patch for old db comptability * Mon Nov 15 2010 Jeff Raber - 0.15.6-1 - New upstream point release, bug fixes References: [ 1 ] Bug #641743 - [abrt] gourmet-0.15.4-5.fc14: expression.py:1375:__nonzero__:TypeError: Boolean value of this clause is not defined https://bugzilla.redhat.com/show_bug.cgi?id=641743 [ 2 ] Bug #656951 - [abrt] gourmet-0.15.6-1.fc14: db.py:891:add_column_to_table:AttributeError: 'Float' object has no attribute 'get_col_spec' https://bugzilla.redhat.com/show_bug.cgi?id=656951 ---
Re: tty errors Booting Nightly Compose: desktop-x86_64-20101120.20.iso
On Sun, Nov 28, 2010 at 7:25 AM, Bruno Wolff III wrote: > On Tue, Nov 23, 2010 at 08:26:53 -0500, > Kyle McMartin wrote: > > On Sun, Nov 21, 2010 at 08:08:19AM -0800, Thomas C Gilliard wrote: > > > desktop-x86_64-20101120.20.iso > > > > > > (2) Acer Aspire One: > > > Boot & Basic Video: > > > Boots with progress bar gdm has black background, No desktop > background. > > > abrt:kernel oops > > > warning: at drivers/char/tty_io.c:1325 tty_open+0x298/0x495() > > > > https://bugzilla.redhat.com/show_bug.cgi?id=630464 > > I have been seeing black backgrounds for gdm and missing desktop > backgrounds. > It seems to be somewhat random and with the other issues I have been having > its hard to get time to properly report everything. I think this issues may > correlate with the windows leaving a trail bug I reported. But with stuff > not happening consistently it's hard to tell for sure. > Same symptomology noted here. Kernel oops reported. Additionally, some component of nautilus is not running by default, the right click desktop menu does not appear by default; running nautilus into the background from a terminal window "cures" the problem. This is from a parallel installation of rawhide fully updated to 2010-11-27. -- G.Wolfe Woodbury aka redwolfe in FAS (proventesters) -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
Re: tty errors Booting Nightly Compose: desktop-x86_64-20101120.20.iso
On Tue, Nov 23, 2010 at 08:26:53 -0500, Kyle McMartin wrote: > On Sun, Nov 21, 2010 at 08:08:19AM -0800, Thomas C Gilliard wrote: > > desktop-x86_64-20101120.20.iso > > > > (2) Acer Aspire One: > > Boot & Basic Video: > > Boots with progress bar gdm has black background, No desktop background. > > abrt:kernel oops > > warning: at drivers/char/tty_io.c:1325 tty_open+0x298/0x495() > > https://bugzilla.redhat.com/show_bug.cgi?id=630464 I have been seeing black backgrounds for gdm and missing desktop backgrounds. It seems to be somewhat random and with the other issues I have been having its hard to get time to properly report everything. I think this issues may correlate with the windows leaving a trail bug I reported. But with stuff not happening consistently it's hard to tell for sure. -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
