On 23 September 2016 at 06:25, Ansis Atteka <ansisatt...@gmail.com> wrote: > > > On 23 September 2016 at 03:25, Joe Stringer <j...@ovn.org> wrote: >> >> ovs-lib creates several directories directly from the script, but >> doesn't make any attempt to ensure that the correct SELinux context is >> applied to these directories. As a result, the created directories end >> up with type var_run_t rather than openvswitch_var_run_t. >> >> During reboot using a tmpfs for /var/run, startup scripts will invoke >> ovs-lib to create these directories with the wrong context. If SELinux >> is enabled, OVS will fail to start as it cannot write to this directory. >> >> Fix the issue by sprinkling "restorecon" in each of the places where >> directories are created. In practice, many of these should otherwise be >> handled by packaging scripts but if they exist then we should ensure the >> correct SELinux context is set. >> >> On systems where 'restorecon' is unavailable, this should be a no-op. >> >> VMware-BZ: #1732672 >> >> Signed-off-by: Joe Stringer <j...@ovn.org> >> Acked-by: Ansis Atteka <aatt...@ovn.org> > > Thanks for taking care of this. I just did a basic test and I think your V2 > patch is a good enhancement.
Thanks, I applied this to master and branch-2.6. _______________________________________________ dev mailing list dev@openvswitch.org http://openvswitch.org/mailman/listinfo/dev
