From d36ecfb75c3110764b9afec7162ca9a3fdd655dc Mon Sep 17 00:00:00 2001 From: Steve Baker Date: Tue, 14 May 2013 12:03:24 +1200 Subject: [PATCH] Trigger SELinux autorelabel on first boot. This adds about 30 seconds to my local boot time. Fixes bug #1179730 Change-Id: I519bb9289236abd43f8eb784768dcab10e2e5754 --- elements/fedora/finalise.d/11-selinux-autorelabel | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100755 elements/fedora/finalise.d/11-selinux-autorelabel diff --git a/elements/fedora/finalise.d/11-selinux-autorelabel b/elements/fedora/finalise.d/11-selinux-autorelabel new file mode 100755 index 00000000..880fdba2 --- /dev/null +++ b/elements/fedora/finalise.d/11-selinux-autorelabel @@ -0,0 +1,6 @@ +#!/bin/bash + +# Without fixing selinux file labels, sshd will run in the kernel_t domain +# instead of the sshd_t domain, making ssh connections fail with +# "Unable to get valid context for " error message +touch /.autorelabel