Blame 0056-98selinux-selinux-loadpolicy.sh-use-mount-rbind-for-.patch
|
Harald Hoyer |
1ee1e3 |
From 5055abb615a0b4f7519d24a6a37d8af5b5bea6d5 Mon Sep 17 00:00:00 2001
|
|
Harald Hoyer |
1ee1e3 |
From: Will Woods <wwoods@redhat.com>
|
|
Harald Hoyer |
1ee1e3 |
Date: Tue, 20 Mar 2012 13:31:36 +0100
|
|
Harald Hoyer |
1ee1e3 |
Subject: [PATCH] 98selinux/selinux-loadpolicy.sh: use mount --rbind for /dev
|
|
Harald Hoyer |
1ee1e3 |
|
|
Harald Hoyer |
1ee1e3 |
This preserves /dev/shm and /dev/pts for the selinux relabel.
|
|
Harald Hoyer |
1ee1e3 |
---
|
|
Harald Hoyer |
1ee1e3 |
modules.d/98selinux/selinux-loadpolicy.sh | 2 +-
|
|
Harald Hoyer |
1ee1e3 |
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
Harald Hoyer |
1ee1e3 |
|
|
Harald Hoyer |
1ee1e3 |
diff --git a/modules.d/98selinux/selinux-loadpolicy.sh b/modules.d/98selinux/selinux-loadpolicy.sh
|
|
Harald Hoyer |
1ee1e3 |
index 6eb1dbb..d6e24d6 100755
|
|
Harald Hoyer |
1ee1e3 |
--- a/modules.d/98selinux/selinux-loadpolicy.sh
|
|
Harald Hoyer |
1ee1e3 |
+++ b/modules.d/98selinux/selinux-loadpolicy.sh
|
|
Harald Hoyer |
1ee1e3 |
@@ -43,7 +43,7 @@ rd_load_policy()
|
|
Harald Hoyer |
1ee1e3 |
if [ $ret -eq 0 -o $ret -eq 2 ]; then
|
|
Harald Hoyer |
1ee1e3 |
# If machine requires a relabel, force to permissive mode
|
|
Harald Hoyer |
1ee1e3 |
[ -e "$NEWROOT"/.autorelabel ] && LANG=C /usr/sbin/setenforce 0
|
|
Harald Hoyer |
1ee1e3 |
- mount --bind /dev "$NEWROOT/dev"
|
|
Harald Hoyer |
1ee1e3 |
+ mount --rbind /dev "$NEWROOT/dev"
|
|
Harald Hoyer |
1ee1e3 |
LANG=C chroot "$NEWROOT" /sbin/restorecon -R /dev
|
|
Harald Hoyer |
1ee1e3 |
return 0
|
|
Harald Hoyer |
1ee1e3 |
fi
|