[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: An interesting restorecon mislabel from selinux-policy-strict...



On Sun, 12 Feb 2006 17:50:45 +1100, Russell Coker said:
> On Saturday 04 February 2006 05:46, Valdis Kletnieks vt edu wrote:
> > /usr/src(/.*)?            system_u:object_r:src_t:s0
> > /usr(/.*)?/lib(64)?(/.*)?                       system_u:object_r:lib_t:s0
> >
> > Guess what just happened to all the files under
> > /usr/src/linux-2.6.16-foo/lib/
>
> The most specific entries now have the highest priority (IE they come last in
> the list).
>
> The solution is to add the following to the file_contexts:
> /usr/src/(.+/)?lib(64)?(/.*)?                       system_u:object_r:lib_t:s0

Won't this regexp relabel /usr/src/linux-2.6.16/lib to lib_t rather than src_t,
which is the exact same problem?  Or did you mean to have src_t in that?

Attachment: pgpGKsGec7mu1.pgp
Description: PGP signature


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]