running star archive through restorecon

[Daniel J Walsh]

Murray McAllister wrote:
> Murray McAllister wrote:
>> Hi,
>>
>> This is probably user error, sorry :)
>>
>> 1. touch file{1,2}; ls -Z
>> -rw-rw-r--  murray murray unconfined_u:object_r:user_home_t:s0 file1
>> -rw-rw-r--  murray murray unconfined_u:object_r:user_home_t:s0 file2
>>
>> 2. chcon -l s0:c2 file{1,2}; ls -Z
>> -rw-rw-r--  murray murray unconfined_u:object_r:user_home_t:s0:c2 file1
>> -rw-rw-r--  murray murray unconfined_u:object_r:user_home_t:s0:c2 file2
>>
>> 2. star -xattr -H exustar -c -f test.star file{1,2}
>> star: 1 blocks + 0 bytes (total of 10240 bytes = 10.00k).
>>
>> 3. cd /var/www/html/
>>
>> 4. sudo star -x -f test.star | restorecon -f -
>>
restorecon -f - needs output.  I think you need to add a -v to the star
command.
>> 5. ls -Z
>> -rw-rw-r--  murray murray unconfined_u:object_r:user_home_t:s0:c2 file1
>> -rw-rw-r--  murray murray unconfined_u:object_r:user_home_t:s0:c2 file2
>> -rw-r--r--  root root unconfined_u:object_r:httpd_sys_content_t:s0
>> test.star
> I've obviously done something wrong since file1 and file2 are also
> user_home_t type :(
>>
>> file1 and file2 are still s0:c2. When I perform the same steps with
>> tar (using tar --selinux), in step 5, file1 and file2 use s0.
>>
>> Does anyone have any pointers as to where I've gone wrong? I don't get
>> any denials when running "sudo star -x -f test.star | restorecon -f -".
>>
>> I am using:
>>
>> Fedora release 9.92 (Rawhide)
>> star-1.5a84-6.fc10.i386
>> tar-1.20-3.fc10.i386
>> policycoreutils-2.0.57-1.fc10.i386
>> selinux-policy-targeted-3.5.10-3.fc10.noarch
>> selinux-policy-3.5.10-3.fc10.noarch
>>
>> Cheers :)
>>
>> -- 
>> fedora-selinux-list mailing list
>> fedora-selinux-list at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
> 
> -- 
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list