[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

SELinux macro broken?

From: Christoph Höger <choeger cs tu-berlin de>
To: fedora-devel-list redhat com
Subject: SELinux macro broken?
Date: Wed, 26 Dec 2007 18:09:29 +0100

Hi,

when I tried to build a custom SELinux module, this strange behavior
occured:

when I used:

libs_read_lib_files(tomcat5_t)

I got "read" denied source: tomcat5_t target: lib_t

but using

require {
        type lib_t;
        type tomcat5_t;
        class file read;
}

allow tomcat5_t lib_t:file read;

worked fine. Although this should essentially be the same in my
understanding.

Any explanations for that?

regards

christoph

Follow-Ups:
- Re: SELinux macro broken?
  - From: Daniel J Walsh

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]