diff options
| author | Daniel Baumann <daniel@debian.org> | 2008-10-12 11:07:42 +0200 |
|---|---|---|
| committer | Daniel Baumann <daniel@debian.org> | 2011-03-09 19:03:42 +0100 |
| commit | 1476f3a1c36090279dbf9a4ceef61893e3972e93 (patch) | |
| tree | f15a14aa6bbfd2ddaafce7f2dadb1ea9a2155d5c /helpers/lh_chroot_selinuxfs | |
| parent | 63dc9da964f586ae30523b16ad88f2d53f1a1c1b (diff) | |
| download | vyos-live-build-1476f3a1c36090279dbf9a4ceef61893e3972e93.tar.gz vyos-live-build-1476f3a1c36090279dbf9a4ceef61893e3972e93.zip | |
Adding lh_chroot_selinuxfs helper to support building live images on a selinux enabled host (Closes: #501652).
Diffstat (limited to 'helpers/lh_chroot_selinuxfs')
| -rwxr-xr-x | helpers/lh_chroot_selinuxfs | 98 |
1 files changed, 98 insertions, 0 deletions
diff --git a/helpers/lh_chroot_selinuxfs b/helpers/lh_chroot_selinuxfs new file mode 100755 index 000000000..69340c618 --- /dev/null +++ b/helpers/lh_chroot_selinuxfs @@ -0,0 +1,98 @@ +#!/bin/sh + +# lh_chroot_sysfs(1) - mount /selinux +# Copyright (C) 2006-2008 Daniel Baumann <daniel@debian.org> +# +# live-helper comes with ABSOLUTELY NO WARRANTY; for details see COPYING. +# This is free software, and you are welcome to redistribute it +# under certain conditions; see COPYING for details. + +set -e + +# Including common functions +LH_BASE="${LH_BASE:-/usr/share/live-helper}" + +for FUNCTION in "${LH_BASE}"/functions/*.sh +do + . "${FUNCTION}" +done + +# Setting static variables +DESCRIPTION="mount /selinux" +HELP="" +USAGE="${PROGRAM} {install|remove} [--force]" + +Arguments "${@}" + +# Ensure that a system is built as root +lh_testroot + +# Reading configuration files +Read_conffile config/all config/common config/bootstrap config/chroot config/binary config/source +Set_defaults + +# Requiring stage file +Require_stagefile .stage/bootstrap + +case "${1}" in + install) + if [ -e /selinux/enforce ] && [ "$(cat /selinux/enforce)" = "1" ] + then + Echo_message "Begin mounting /selinux..." + + # Checking stage file + Check_stagefile .stage/chroot_selinuxfs + + # Checking lock file + Check_lockfile .lock + + # Creating lock file + Create_lockfile .lock + + if [ "${LH_USE_FAKEROOT}" != "enabled" ] + then + # Create mountpoint + mkdir -p chroot/selinux + + # Mounting /selinux + ${LH_ROOT_COMMAND} mount selinuxfs-live -t selinuxfs chroot/selinux + else + rm -rf chroot/selinux + ln -s /selinux chroot/ + fi + + # Creating stage file + Create_stagefile .stage/chroot_selinuxfs + fi + ;; + + remove) + Echo_message "Begin unmounting /selinux..." + + # Checking lock file + Check_lockfile .lock + + # Creating lock file + Create_lockfile .lock + + if [ "${LH_USE_FAKEROOT}" != "enabled" ] + then + # Unmounting /selinux + #fuser -km chroot/selinux + if [ -e chroot/selinux/enforce ] + then + ${LH_ROOT_COMMAND} umount chroot/selinux + fi + else + rm -rf chroot/selinux + mkdir -p chroot/selinux + fi + + # Removing stage file + rm -f .stage/chroot_selinux + ;; + + *) + Usage + ;; +esac |