[Pkg-sysvinit-devel] Bug#626725: initscripts: Needs to set SELinux labels for /run
Martin Orr
martin at martinorr.name
Sat May 14 17:44:29 UTC 2011
Package: initscripts
Version: 2.88dsf-13.5
Severity: important
Tags: patch
Directories and symlinks created as part of the /run transition are not
labelled for SELinux. The effect is that most services fail to start on
boot after transitioning to /run.
You need to run restorecon after creating a directory or symbolic link
in an init script or maintainer script. Attached patch does this.
/run with SELinux also requires the refpolicy patch I have submitted in
#626720. Once that is fixed, initscripts should probably have
Breaks: selinux-policy-default (<< $FIXEDVERSION)
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.38.2 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages initscripts depends on:
ii coreutils 8.5-1 GNU core utilities
ii debianutils 3.4.5 Miscellaneous utilities specific t
ii libc6 2.11.2-13 Embedded GNU C Library: Shared lib
ii lsb-base 3.2-27 Linux Standard Base 3.2 init scrip
ii mount 2.17.2-9.1 Tools for mounting and manipulatin
ii sysv-rc 2.88dsf-13.5 System-V-like runlevel change mech
ii sysvinit-utils 2.88dsf-13.5 System-V-like utilities
Versions of packages initscripts recommends:
ii e2fsprogs 1.41.12-4 ext2/ext3/ext4 file system utiliti
ii psmisc 22.13-1 utilities that use the proc file s
initscripts suggests no packages.
-- no debconf information
-------------- next part --------------
A non-text attachment was scrubbed...
Name: run-restorecon.diff
Type: text/x-diff
Size: 2491 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-sysvinit-devel/attachments/20110514/2f60ecdd/attachment-0001.diff>
More information about the Pkg-sysvinit-devel
mailing list