Murray McAllister wrote:
Hi,
This is probably user error, sorry :)
1. touch file{1,2}; ls -Z
-rw-rw-r-- murray murray unconfined_u:object_r:user_home_t:s0 file1
-rw-rw-r-- murray murray unconfined_u:object_r:user_home_t:s0 file2
2. chcon -l s0:c2 file{1,2}; ls -Z
-rw-rw-r-- murray murray unconfined_u:object_r:user_home_t:s0:c2 file1
-rw-rw-r-- murray murray unconfined_u:object_r:user_home_t:s0:c2 file2
2. star -xattr -H exustar -c -f test.star file{1,2}
star: 1 blocks + 0 bytes (total of 10240 bytes = 10.00k).
3. cd /var/www/html/
4. sudo star -x -f test.star | restorecon -f -
5. ls -Z
-rw-rw-r-- murray murray unconfined_u:object_r:user_home_t:s0:c2 file1
-rw-rw-r-- murray murray unconfined_u:object_r:user_home_t:s0:c2 file2
-rw-r--r-- root root unconfined_u:object_r:httpd_sys_content_t:s0
test.star
I've obviously done something wrong since file1 and file2 are also
user_home_t type :(
file1 and file2 are still s0:c2. When I perform the same steps with tar
(using tar --selinux), in step 5, file1 and file2 use s0.
Does anyone have any pointers as to where I've gone wrong? I don't get
any denials when running "sudo star -x -f test.star | restorecon -f -".
I am using:
Fedora release 9.92 (Rawhide)
star-1.5a84-6.fc10.i386
tar-1.20-3.fc10.i386
policycoreutils-2.0.57-1.fc10.i386
selinux-policy-targeted-3.5.10-3.fc10.noarch
selinux-policy-3.5.10-3.fc10.noarch
Cheers :)
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
