[systemd-devel] SELinux needs labels to be assigned at boot time to /sys
Lennart Poettering
lennart at poettering.net
Wed Dec 14 04:53:37 PST 2011
On Tue, 13.12.11 16:16, Daniel J Walsh (dwalsh at redhat.com) wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> The only way to do this is by running restorecon over the contents.
>
> We would like to add /sys to the list of directories that systemd
> fixes at boot time, just like /dev
>
> https://bugzilla.redhat.com/show_bug.cgi?id=767355
Hmm, I am a bit concerned that this might be very slow, and given that
the tree is very dynamic will not suffice anyway. What's the usecase
here? To which /sys directories do you need a label assigned? If this is
just some root dirs beneath /sys it might make sense to handles this via
/etc/tmpfiles.d/ instead?
Lennart
--
Lennart Poettering - Red Hat, Inc.
More information about the systemd-devel
mailing list