Red Hat Bugzilla – Bug 187678
SELinux policy targeted 2.2.25-2.fc5 breaks Sun JRE
Last modified: 2007-11-30 17:11:29 EST
Description of problem:
After updating the SELinux policy "targeted" to 2.2.25-2.fc5 the SUN JRE 1.x
didn't start anymore.
Running chcon -t textrel_shlib_t /usr/local/jre1.6.0/lib/i386/client/* and chcon
-t textrel_shlib_t /usr/local/jre1.6.0/bin/* solved the problem temporary and
made the jre running again.
This seems a little extreme. What is blowing up what avc messares are you seeing?
Where do I get jre1.6 to test this?
You can get it from here:
I can confirm that I need to do:
chcon -t textrel_shlib_t /opt/jdk1.6.0/jre/lib/i386/client/libjvm.so
This has not been necessary with jdk1.5.0.
Okay, as I feared: The Java plugin for firefox isn't working anymore too :-(
(In reply to comment #4)
> Okay, as I feared: The Java plugin for firefox isn't working anymore too :-(
Sorry, please ignore this comment. It was my fault
Fixed in selinux-policy-2.2.32-1.fc5
Tested with selinux-policy-targeted-2.2.34-3.fc5:
Sun JRE 1.5 works fine but JRE 1.6 Beta is still broken
What avc messages are you seeing with it?
AFAIR "cannot restore segment prot after reloc: Permission denied" or something
I'm sorry, but i was forced to do chcon -t textrel_shlib_t
/usr/local/jre1.6.0/lib/i386/client/libjvm.so to make my apps running again with
java 1.6 beta
fixed in selinux-policy-2.2.38-1.FC5.
It seems that selinux-policy-2.2.36-2.fc5 fixes the problem. At least all my
java apps start with jre 1,5 and 1.6beta