[systemd-devel] SMACK runtime vs build-time checks? (aka: tmp.mount broke my boot)

Mantas Mikulėnas grawity at gmail.com
Sat Oct 17 21:01:15 PDT 2015


So far all existing SELinux and SMACK options had runtime checks – if
systemd was built with +SMACK but the kernel wasn't, it still worked fine.
(Arch uses such a configuration.)

But then https://github.com/systemd/systemd/issues/1571 added an option to
tmp.mount which only depends on the build-time option, which creates
problems when booting a non-SMACK kernel...

Any ideas on how to fix it? All previous such fixes were for API
filesystems in mount-setup.c and could do flexible checks, but that clearly
won't work for mount units.

-- 
Mantas Mikulėnas <grawity at gmail.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/systemd-devel/attachments/20151018/110f7b7c/attachment.html>


More information about the systemd-devel mailing list