[systemd-devel] SMACK runtime vs build-time checks? (aka: tmp.mount broke my boot)

Kay Sievers kay at vrfy.org
Sun Oct 18 03:22:15 PDT 2015


On Sun, Oct 18, 2015 at 6:01 AM, Mantas Mikulėnas <grawity at gmail.com> wrote:
> So far all existing SELinux and SMACK options had runtime checks – if
> systemd was built with +SMACK but the kernel wasn't, it still worked fine.
> (Arch uses such a configuration.)
>
> But then https://github.com/systemd/systemd/issues/1571 added an option to
> tmp.mount which only depends on the build-time option, which creates
> problems when booting a non-SMACK kernel...
>
> Any ideas on how to fix it? All previous such fixes were for API filesystems
> in mount-setup.c and could do flexible checks, but that clearly won't work
> for mount units.

I have reverted it. It needs a different solution.

Kay


More information about the systemd-devel mailing list