TigerVNC for non-root User On Yocto based Linux + selinux

[Jay ganatra]

I have used the policy file provided by tigerVNC. I wan to start the vncservice for the non-root user `user1` which I have mentioned in the vncserver.user when I started the service I got below error but I can able to start the service

Jan 16 18:44:39 Test systemd[1]: Starting Remote desktop service (VNC)...
Jan 16 18:44:39 Test vncsession[20206]: pam_selinux(tigervnc:session): Unable to get valid context for user1
Jan 16 18:44:39 Test vncsession[20206]: pam_selinux(tigervnc:session): conversation failed
Jan 16 18:44:39 Test vncsession[20206]: pam_unix(tigervnc:session): session opened for user user1(uid=1001) by (uid=0)
Jan 16 18:44:39 Test systemd[1]: Started Remote desktop service (VNC).
 

[Pierre Ossman]

Hmm... This does seem familiar. We had such issues with ThinLinc in the
past, where you had to map which services could create which user contexts.

I think that was overlooked for TigerVNC. But everything seems to work
correctly, so it seems like modern SELinux no longer requires that.

This is rather deep in to the messy details of SELinux and outside my
expertise. :/

Regards,
--
Pierre Ossman Software Development
Cendio AB https://cendio.com
Teknikringen 8 https://twitter.com/ThinLinc
583 30 Linköping https://facebook.com/ThinLinc
Phone: +46-13-214600

A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?