From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040422 Epiphany/1.1.12 Description of problem: When in enforcing mode, running Mozilla/Epiphany with the latest Flash plugin version (6.0.81.0) stops working. If I run "setenforce 0" it works again. I've included some output information for the flash-files. I only tried installing the plugin locally in my home directory. Version-Release number of selected component (if applicable): policy-1.11.2-18 How reproducible: Always Steps to Reproduce: 1. Install Flash-plugin (http://fpdownload.macromedia.com/pub/shockwave/flash/english/linux/6.0r81/install_flash_player_6_linux.tar.gz) 2. Start Mozilla/Epiphany 3. Visit website with flash. Actual Results: Plugin doesn't get detected, "about:plugins" yields nothing. Expected Results: Flash should be played, and "about:plugins" should list the plugin as detected. Additional info: Relevant "dmesg" output: audit(1082929676.973:0): avc: denied { execute } for pid=2026 path=/home/jacob/.mozilla/plugins/libflashplayer.so dev=hda2 ino=245798 scontext=user_u:user_r:user_t tcontext=system_u:object_r:user_mozilla_rw_t tclass=file "ls -lZ" in plugin dir output: -rwxr-xr-x+ jacob jacob system_u:object_r:user_mozilla_rw_t flashplayer.xpt -rwxr-xr-x+ jacob jacob system_u:object_r:user_mozilla_rw_t libflashplayer.so
I actually solved this in an ugly temporary way, by placing the flash-files in my $HOME/temp, and then creating symlinks to these files in $HOME/.mozilla/plugins/
/usr/bin/epiphany-bin -- system_u:object_r:mozilla_exec_t needs to be added to file context. I will add it to next policy. chcon -t mozilla_exec_t /usr/bin/epiphany-bin Dan