Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: unconfined_execmem_exec_t needed for several GHC-built Haskell binaries
https://bugzilla.redhat.com/show_bug.cgi?id=451877
------- Additional Comments From bos@serpentine.com 2008-06-22 22:07 EST ------- The runtime system for programs compiled by GHC generates code dynamically and executes it.
The interaction with SELinux's enforcing mode is a known problem, which was previously addressed with a hack: the %post scripts for Haskell programs were using chcon to add unconfined_exec_mem_t. This obviously didn't work in lots of circumstances, hence wanting to apply the policy properly.
The underlying problem, namely the way GHC allocates memory that it intends to execute dynamically, should be fixed within the next six months or so. See http://hackage.haskell.org/trac/ghc/ticket/738 for details.
haskell-devel@lists.fedoraproject.org