Removing obsolete selinux setup

[Pete Stieber]

On 01/16/2015 12:19 PM, PS = Pete Stieber wrote:
PS>> I have a machine that has dokuwiki loaded.
PS>> In order to get it to work with selinux, I
PS>> followed some advice that was on:
PS>>
PS>> https://www.dokuwiki.org/install:fedora
PS>>
PS>> to allow apache to edit some files:
PS>>
PS>> semanage fcontext -a -t httpd_mediawiki_rw_content_t '/etc/dokuwiki'
PS>> restorecon -v '/etc/dokuwiki'
PS>> semanage fcontext -a -t httpd_mediawiki_rw_content_t
PS>> '/etc/dokuwiki/users.auth.php'
PS>> restorecon -v '/etc/dokuwiki/users.auth.php'
PS>> semanage fcontext -a -t httpd_mediawiki_rw_content_t
PS>> '/etc/dokuwiki/local.php'
PS>> restorecon -v '/etc/dokuwiki/local.php'
PS>>
PS>> This worked on 19 and 20, but when I
PS>> upgraded the machine to Fedora 21 the
PS>> httpd_mediawiki_rw_content_t no longer
PS>> exists.  I tried
PS>>
PS>> semanage fcontext -d -t httpd_mediawiki_rw_content_t '/etc/dokuwiki'
PS>>
PS>> but I get complaints about the media wiki
PS>> context being invalid.
PS>>
PS>> How do I remove these obsolete entries
PS>> from the selinux database?

On 1/16/2015 10:50 AM, DW = Daniel Walsh wrote:
DW> semanage fcontext -d '/etc/dokuwiki/users.auth.php'
DW>
DW> Although I am surprised they do not work.

Thanks for the quick reply.

Here's the complaints I get when I try...

# semanage fcontext -d '/etc/dokuwiki/users.auth.php'
libsepol.context_from_record: type httpd_mediawiki_rw_content_t is not 
defined (No such file or directory).
libsepol.context_from_record: could not create context structure 
(Invalid argument).
libsemanage.validate_handler: invalid context 
system_u:object_r:httpd_mediawiki_rw_content_t:s0 specified for 
/etc/dokuwiki [all files] (Invalid argument).
libsemanage.dbase_llist_iterate: could not iterate over records (Invalid 
argument).
OSError: Invalid argument

It seems like I have to temporarily add the obsolete context 
(httpd_mediawiki_rw_content_t) back so I can continue and I don't know how.

Dose that make any sense?

Thanks again,
Pete