On Sun, 2014-01-19 at 20:45 +0100, Miroslav Grepl wrote: > > > There is a bug for this issue. > > https://bugzilla.redhat.com/show_bug.cgi?id=1054350 > > where I apologized for this issue. Unfortunately it went (also thru > updates-testing) so quickly and we catched this issue too late. > I do not know the details of this issue but looks to me like a bug in RPM instead (excuse me if i am wrong). One should be able to run RPM/RPM scripts without a domain/role transition if one has appropriate permissions, and unconfined_t has those AFAIK. Looks like that karma procedure does not always fully work. I might have made the same mistake if i were in your shoes. Although i probably would be really careful with any changes not for rawhide, and i would have probably tested the change locally first, but that does not have to mean i would have caught this bug. Anyways where people work, mistakes are made. Lesson learned. -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
