problems labeling files
Michael Atighetchi
matighet at bbn.com
Tue Jul 26 07:33:22 UTC 2011
Hi,
I'm having issues with getting files labeled correctly.
First some background:
[proxyuser at lime selinux]$ sestatus
SELinux status: enabled
SELinuxfs mount: /selinux
Current mode: permissive
Mode from config file: permissive
Policy version: 24
Policy from config file: targeted
[proxyuser at lime selinux]$ cat /etc/redhat-release
Fedora release 14 (Laughlin)
Here the problem: I have setup the following file contexts
[proxyuser at lime selinux]$ sudo semanage fcontext -l | grep aps-base
/home/proxyuser/trunk/aps-base/crumple-zone/target/CZtp regular
file system_u:object_r:CZtp_exec_t:s0
/home/proxyuser/trunk/aps-base/crumple-zone/target/runSeed.sh regular
file system_u:object_r:CZwd_exec_t:s0
Relabeling for one of the files succeeds:
sudo restorecon -F -R -v
/home/proxyuser/trunk/aps-base/crumple-zone/target/CZtp
[proxyuser at lime selinux]$ ls -lZ
/home/proxyuser/trunk/aps-base/crumple-zone/target/CZtp
-rwxr-xr-x. proxyuser proxyuser system_u:object_r:CZtp_exec_t:s0
/home/proxyuser/trunk/aps-base/crumple-zone/target/CZtp
However, relabeling of the other file silently fails:
[proxyuser at lime selinux]$ sudo restorecon -F -R -v
/home/proxyuser/trunk/aps-base/crumple-zone/target/runSeed.sh
[proxyuser at lime selinux]$ ls -lZ
/home/proxyuser/trunk/aps-base/crumple-zone/target/runSeed.sh
-rwxrwxr-x. proxyuser proxyuser unconfined_u:object_r:user_home_t:s0
/home/proxyuser/trunk/aps-base/crumple-zone/target/runSeed.sh
What am I missing?
--
Michael Atighetchi
Senior Scientist
Raytheon BBN Technologies
617-873-1679
matighet at bbn.com
More information about the selinux
mailing list