Something happened with the most recent selinux update in F41, breaking my local policy.[root@jack ~]# semanage fcontext -l | grep httportmapd/usr/sbin/httportmapd regular file system_u:object_r:libcxx_httportmapd_exec_t:s0This is coming from a local policy module I cobbled together and installed, yet:[root@jack ~]# ls -alZ /usr/sbin/httportmapd-rwxr-xr-x. 1 root root system_u:object_r:bin_t:s0 318104 Sep 21 2018 /usr/sbin/httportmapdAnd restorecon -F /usr/sbin/httportmapd does not fix the context, and stays silent no matter how many -v options I feed to it.Any idea why my file context is not being used?
This looks like a bigger issue, and not just with my module.There's another explicit file context set for /usr/sbin/smartd. semanage says:
/usr/sbin/smartd regular file system_u:object_r:fsdaemon_exec_t:s0 However: [root@jack ~]# ls -alZ /usr/sbin/smartd -rwxr-xr-x. 1 root root system_u:object_r:bin_t:s0 671608 Jul 19 20:00 /usr/sbin/smartd And restorecon thinks this is peachy. I note that semanage fcontext lists, separately: /usr/sbin = /usr/binNot sure if this is related, or not. I do see stuff in /usr/sbin with other labels, namely /usr/sbin/xl2tpd. I don't see how it's set, this does not appear in the output of semanage fcontext.
Attachment:
pgpCm2odLjiZE.pgp
Description: PGP signature
-- _______________________________________________ selinux mailing list -- selinux@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to selinux-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/selinux@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
