[systemd-devel] [PATCH] selinux: Only attempt to load policy exactly once, in the real root

[Lennart Poettering]

On Thu, 20.02.14 13:50, Eric Paris (eparis at parisplace.org) wrote:

> Not really.  If it doesn't exist on the final root fs and I put
> enforcing=1 on the command line, I expect the box to
> panic/fail/die/whatever....

OK, then maybe check "!in_initrd() || access("/etc/selinux/", F_OK) >= 0"? 

Lennart

-- 
Lennart Poettering, Red Hat