[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: /dev/shm - tmpfs_t or device_t ?

From: Ken YANG <spng yang gmail com>
To: Tom London <selinux gmail com>
Cc: fedora-selinux <fedora-selinux-list redhat com>
Subject: Re: /dev/shm - tmpfs_t or device_t ?
Date: Sat, 25 Aug 2007 12:48:55 +0800

Tom London wrote:
> Running latest Rawhide, targeted/enforcing.
> 
> I notice that if I run 'restorecon -v -R -n /dev' I get:
> [root localhost ~]# restorecon -v -R -n /dev
> restorecon reset /dev/shm context
> system_u:object_r:tmpfs_t:s0->system_u:object_r:device_t:s0
> [root localhost ~]#
> 
> but
> [root localhost ~]# ls -ldZ /dev/shm
> drwxrwxrwt  root root system_u:object_r:tmpfs_t        /dev/shm
> [root localhost ~]#
> 
> Seems funny to me....  Is that right?

i found your resorecon command run with "-n", that option means:

-n     don't change any file labels.

additionally, i found there are not any label in file_contexts,
so i think if there no type_transition rules in policy, the file
label should be inherited from his containing dir, i.e. device_t


> 
> tom

References:
- /dev/shm - tmpfs_t or device_t ?
  - From: Tom London

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]