SELinux macro broken?
Daniel J Walsh
dwalsh at redhat.com
Mon Dec 31 20:39:42 UTC 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christoph Höger wrote:
> Hi,
>
> when I tried to build a custom SELinux module, this strange behavior
> occured:
>
> when I used:
>
> libs_read_lib_files(tomcat5_t)
>
> I got "read" denied source: tomcat5_t target: lib_t
>
> but using
>
> require {
> type lib_t;
> type tomcat5_t;
> class file read;
> }
>
> allow tomcat5_t lib_t:file read;
>
> worked fine. Although this should essentially be the same in my
> understanding.
>
> Any explanations for that?
>
> regards
>
> christoph
>
Please attach the compilation errors.
tomcat5_t is marked as a domain_type?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkd5U44ACgkQrlYvE4MpobP9egCdG+J82YNQyTFNSKnh7uyku4Aa
iAgAoKR7A+DEWGIFNJV+48MPt+BlxIyr
=wOR2
-----END PGP SIGNATURE-----
More information about the fedora-devel-list
mailing list