Daniel J Walsh <dwa...@redhat.com> writes: > [...] > So if you create a directory in the postinstall of an rpm, the directory > will be created as var_run_t (rule 1), rpm has SELinux intelligence > built in, but since you did this in postinstall, rpm command does not > know you did it. You will have to run restorecon. [...]
If the directories were listed in %files, as %ghost or whatever, rpm could figure it out, no? Could we have a single early rpm-based initscript that creates all /var/run & /var/lock subdirs owned by installed packages, and selinux-labels them? - FChE -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel