Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5

From: Stephen Smalley <sds@xxxxxxxxxxxxx>
Date: Thu, 30 Mar 2006 12:26:23 -0500

On Thu, 2006-03-30 at 09:13 -0800, alan wrote:

On Thu, 30 Mar 2006, Stephen Smalley wrote:

In FC5 we have

/usr(/.*)?/nvidia/.*\.so(\..*)? --
gen_context(system_u:object_r:textrel_shlib_t,s0)

Looks like it is being overriden by a later entry in file_contexts:
/usr(/.*)?/lib(64)?/.*\.so(\.[^/]*)* -- system_u:object_r:shlib_t

Is there a way to log an error when an overlap like this occurs?

Such overlap is a normal part of file_contexts; you put more general
expressions first to provide defaults (e.g. mapping everything with no
matching spec to default_t via /.*, mapping all .so files under /usr/lib
not otherwise specified to lib_t via the regex above, etc) and then
provide more specific refinements. There is an improved sorting
algorithm coming for file_contexts, but it can't do much when you have
two roughly equally generic regexes like the above two - which is more
specific? Fully specified paths (no regexes) always win, of course.

--
Stephen Smalley
National Security Agency

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

References:
- kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Eric Tanguy
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Gérard Milmeister
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Florin Andrei
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Eric Tanguy
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Stephen Smalley
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Daniel J Walsh
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: Stephen Smalley
- Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
  - From: alan

Prev by Date: Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
Next by Date: Re: Fedora 5 DVD - hangs during dependency check
Previous by thread: Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
Next by thread: Re: kmod-nvidia-1.0.8178-6.2.6.16_1.2080_FC5
Index(es):
- Date
- Thread

Relevant Pages

Re: [2.6.25-git18 => 2.6.26-rc1-git1] Xorg crash with xf86MapVidMem error
... 4] Overlap at 0x77fde000-0x77fdf000 ... New Entry ... registered new interface driver usbfs ... ctnetlink v0.93: registering with nfnetlink. ...
(Linux-Kernel)
Re: [2.6.25-git18 => 2.6.26-rc1-git1] Xorg crash with xf86MapVidMem error
... ACPI: bus type pci registered ... Overlap at 0x77fd0000-0x77fd5000 ... New Entry ... ctnetlink v0.93: registering with nfnetlink. ...
(Linux-Kernel)
Re: adding time segments
... It seems to me that the most straightforward implementation would be to keep some kind of list of "DateTime with range" instances. ... DateTime _dtEnd; ... If there's overlap, you would modify the existing entry in your list, expanding it to include the new entry. ... The overlap could involve the new range ending within an existing range, beginning within an existing range, being completely contained within an existing range, completely containing an existing range, or even spanning two existing ranges. ...
(microsoft.public.dotnet.languages.csharp)
Re: WWWJDIC hitotabi vs. ichido
... they point at the same entry. ... overlap with the "once" sense. ... Possibly, BIANANS. ... Clayton School of Information Technology, ...
(sci.lang.japan)