mirrors/libguestfs
1
0
Fork 0
mirror of https://github.com/libguestfs/libguestfs.git synced 2026-03-21 22:53:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

lib: Add selinux=0 to default kernel command line.

Browse Source 
SELinux exists in a very disturbed state if it is enabled at
boot time, but no policy is loaded.  In particular, it messes
up the security.selinux extended attributes on files in a
not-very-useful way.

We can't enable SELinux because we don't know what policy
can or should be loaded.  Therefore it's best to disable it
completely.
This commit is contained in:
Richard W.M. Jones
2009-07-31 15:57:46 +01:00
parent 8647c4ada5
commit 804330120d
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/guestfs.c
View File

@@ -1044,7 +1044,8 @@ guestfs_launch (guestfs_h *g)
"udevtimeout=300 " /* good for very slow systems (RHBZ#480319) */ \
"noapic " /* workaround for RHBZ#502058 - ok if not SMP */ \
"acpi=off " /* we don't need ACPI, turn it off */ \
"cgroup_disable=memory " /* saves us about 5 MB of RAM */
"cgroup_disable=memory " /* saves us about 5 MB of RAM */ \
"selinux=0 " /* SELinux is messed up if there's no policy */
/* Linux kernel command line. */
snprintf (append, sizeof append,