On 06/30/2010 09:48 PM, Mr Dash Four wrote: > >> hmm... i am not sure about this but maybe: >> >> role system_r types setfiles_mac_t; >> >> helps here.. >> > What do you mean? Is says "security_compute_sid: invalid context unconfined_u:system_r:setfiles_mac_t:s0-s0:c0.c1023" I think that may be because system_r cannot be used for setfiles_mac_t. Looking at the policy i could not find anywhere where system_r would be allowed the setfiles_mac_t domain. So by adding that rule , the system_r role should be allowed the setfiles_mac_t domain, making the context valid. But its just a guess.
Attachment:
signature.asc
Description: OpenPGP digital signature
-- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
