add selinux policy to howdy-beta#1
Open
troyready wants to merge 1 commit into
Open
Conversation
Trying to use howdy-beta on my Fedora 41 system results in SELinux
/var/log/audit/audit.log errors like:
```
type=AVC msg=audit(1731249683.384:270): avc: denied { map } for pid=2191 comm="python3" path="/dev/video2" dev="devtmpfs" ino=975 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=system_u:object_r:v4l_device_t:s0 tclass=chr_file permissive=0
```
I used `audit2allow` to create a working policy and have included it in
the package here.
Owner
|
I'm a bit hesitant to include this in the package. Wouldn't this allow many processes and not just howdy to access |
Author
|
I think it's more limited than it seems. If I look at running processes on my system now via (notably, not other invocations of /usr/bin/python made by my user). |
RonnyPfannschmidt
added a commit
to RonnyPfannschmidt/copr-specs-howdy
that referenced
this pull request
Dec 6, 2025
- Merge upstream PR principis#1 for SELinux policy - Add udev rules for video device permissions (video group) - Add gdm user to video group in %post for GDM login support - Reload udev rules after installation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Trying to use howdy-beta on my Fedora 41 system results in SELinux /var/log/audit/audit.log errors like:
I used
audit2allowto create a working policy and have included it in the package here.