need help getting initng works with selinux
Stephen Smalley
sds at tycho.nsa.gov
Mon Jan 9 14:21:35 UTC 2006
On Sun, 2006-01-08 at 10:28 +0100, dragoran wrote:
> after hacking the initng source code I got it to load the policy but
> still have one problem:
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=173459#c166
> /sbin/ining is labeled as init_exec_t
> whats wrong with it?
A couple of points:
1) Please resync your -selinux patch against the latest
sysvinit-selinux.patch in the Fedora Core CVS tree (or from the devel
srpm). All of the initial policy loading logic has been moved into
libselinux, encapsulated within the selinux_init_load_policy() function.
2) Make sure that initng re-exec's itself after a successful call to
that function. Otherwise, it won't transition into its own domain.
--
Stephen Smalley
National Security Agency
More information about the selinux
mailing list