[systemd-devel] [PATCH 3/3] udev: do NOT re-label smack
WaLyong Cho
walyong.cho at samsung.com
Thu Oct 16 00:59:28 PDT 2014
If selinux is disabled and smack is only enabled, smack label is
relable-ed by label_fix. To avoid, make only be labeled for selinux.
---
src/udev/udev-node.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/src/udev/udev-node.c b/src/udev/udev-node.c
index 9796672..6dd4e74 100644
--- a/src/udev/udev-node.c
+++ b/src/udev/udev-node.c
@@ -317,8 +317,8 @@ static int node_permissions_apply(struct udev_device *dev, bool apply,
}
/* set the defaults */
- if (!selinux)
- label_fix(devnode, true, false);
+ if (!selinux && use_selinux())
+ mac_selinux_fix(devnode, true, false);
if (!smack)
mac_smack_path(devnode, NULL);
}
--
1.9.3
More information about the systemd-devel
mailing list