An interesting restorecon mislabel from selinux-policy-strict...
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Sun Feb 12 15:58:35 UTC 2006
On Sun, 12 Feb 2006 17:50:45 +1100, Russell Coker said:
> On Saturday 04 February 2006 05:46, Valdis.Kletnieks at vt.edu wrote:
> > /usr/src(/.*)? system_u:object_r:src_t:s0
> > /usr(/.*)?/lib(64)?(/.*)? system_u:object_r:lib_t:s0
> >
> > Guess what just happened to all the files under
> > /usr/src/linux-2.6.16-foo/lib/
>
> The most specific entries now have the highest priority (IE they come last in
> the list).
>
> The solution is to add the following to the file_contexts:
> /usr/src/(.+/)?lib(64)?(/.*)? system_u:object_r:lib_t:s0
Won't this regexp relabel /usr/src/linux-2.6.16/lib to lib_t rather than src_t,
which is the exact same problem? Or did you mean to have src_t in that?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20060212/a1b2d603/attachment.sig>
More information about the fedora-selinux-list
mailing list