Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 159125 - unconfined_t not allowed execmod of default_t
unconfined_t not allowed execmod of default_t
Status: CLOSED CURRENTRELEASE
Product: Fedora
Classification: Fedora
Component: selinux-policy-targeted (Show other bugs)
rawhide
All Linux
medium Severity medium
: ---
: ---
Assigned To: Daniel Walsh
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2005-05-30 05:52 EDT by Colin Walters
Modified: 2007-11-30 17:11 EST (History)
1 user (show)

See Also:
Fixed In Version: 1.23.18-2
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2005-09-04 19:46:30 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
completely allow execmod in targeted (493 bytes, patch)
2005-05-30 05:52 EDT, Colin Walters 		no flags Details | Diff
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Colin Walters 2005-05-30 05:52:44 EDT 
I was developing some software on my targeted policy laptop, I use a /scratch
partition which is just labeled as file_t.  This works for nearly everything
except for shared libraries which require execmod.

I've attached a patch which allows execmod of file_type in the targeted policy
when allow_execmod is true.
Comment 1 Colin Walters 2005-05-30 05:52:44 EDT 
Created attachment 114966 [details]
completely allow execmod in targeted
Comment 2 Daniel Walsh 2005-06-08 09:24:06 EDT 
Since this is a te file that is only used in targeted

 if (allow_execmod) {
allow unconfined_t file_type:file execmod;
 }
is all that is needed.  

Modified in selinux-policy-targeted-1.23.18-2
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.