I'm writing policy for some scripts. Script 'a' runs script 'b' and they each have their own entry file and domain type. There is a type transition for a_t through b_exec_t to b_t in the policy. However the transition doesn't happen. Script 'a' does a chown on script 'b' prior to running it. If I remove the chown the transition does happen as expected. Can chown somehow affect the file label? 'ls -Z' doesn't show any change.
Ted
