From: Harald Hoyer <harald@redhat.com>
Date: Thu, 14 Apr 2016 23:14:29 +0000 (+0200)
Subject: core/mount-setup.c: also relabel /dev/shm for selinux (#3039)
X-Git-Tag: v231.3~192
X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=commitdiff_plain;h=34267dba6bc0f2eaed722e1d816ff600dcad7f3d;p=elogind.git

core/mount-setup.c: also relabel /dev/shm for selinux (#3039)

daemons, which wish to transition state from the initramfs to the real
root, might use /dev/shm for their state.

As /dev is not relabeled across mount points, /dev/shm has to be
relabled explicitly.
---

diff --git a/src/core/mount-setup.c b/src/core/mount-setup.c
index 0467fe210..0d73ce6fa 100644
--- a/src/core/mount-setup.c
+++ b/src/core/mount-setup.c
@@ -392,6 +392,7 @@ int mount_setup(bool loaded_policy) {
                 before_relabel = now(CLOCK_MONOTONIC);
 
                 nftw("/dev", nftw_cb, 64, FTW_MOUNT|FTW_PHYS|FTW_ACTIONRETVAL);
+                nftw("/dev/shm", nftw_cb, 64, FTW_MOUNT|FTW_PHYS|FTW_ACTIONRETVAL);
                 nftw("/run", nftw_cb, 64, FTW_MOUNT|FTW_PHYS|FTW_ACTIONRETVAL);
 
                 after_relabel = now(CLOCK_MONOTONIC);