Hello,
It seems that if for login mappings are used groups instead of users genhomedircon does not updates file_contexts.homedirs. I was wondering if this is a bug or a feature.[root@test-rhel7b ~]# semanage login -l
Login Name SELinux User MLS/MCS Range Service
__default__ unconfined_u s0-s0:c0.c1023 *
root unconfined_u s0-s0:c0.c1023 *
system_u system_u s0-s0:c0.c1023 *
[root@test-rhel7b ~]# semanage login -a -s staff_u test
[root@test-rhel7b ~]# matchpathcon /home/test/blah
/home/test/blah staff_u:object_r:user_home_t:s0
[root@test-rhel7b ~]# semanage login -d -s staff_u test
[root@test-rhel7b ~]# semanage login -a -s staff_u %test
[root@test-rhel7b ~]# matchpathcon /home/test/blah
/home/test/blah unconfined_u:object_r:user_home_t:s0
[root@test-rhel7b ~]#
_______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
