* New module store + /var being split off
@ 2015-06-12 15:18 Miroslav Grepl
2015-06-12 15:50 ` Steve Lawrence
2015-06-12 15:53 ` Sven Vermeulen
0 siblings, 2 replies; 3+ messages in thread
From: Miroslav Grepl @ 2015-06-12 15:18 UTC (permalink / raw)
To: SELinux; +Cc: Stephen Smalley
Hello.
We are close to get the latest userspace (modules store + CIL) into
Fedora. We just have a discussion about "/var" being split off and be
mounted only very late at boot.
Can you think about an issue with that? I don't see any urgent blocker
which blocks the boot process.
Thank you,
Miroslav
--
Miroslav Grepl
Senior Software Engineer, SELinux Solutions
Red Hat, Inc.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: New module store + /var being split off
2015-06-12 15:18 New module store + /var being split off Miroslav Grepl
@ 2015-06-12 15:50 ` Steve Lawrence
2015-06-12 15:53 ` Sven Vermeulen
1 sibling, 0 replies; 3+ messages in thread
From: Steve Lawrence @ 2015-06-12 15:50 UTC (permalink / raw)
To: Miroslav Grepl, SELinux; +Cc: Stephen Smalley
On 06/12/2015 11:18 AM, Miroslav Grepl wrote:
> Hello.
>
> We are close to get the latest userspace (modules store + CIL) into
> Fedora. We just have a discussion about "/var" being split off and be
> mounted only very late at boot.
>
> Can you think about an issue with that? I don't see any urgent blocker
> which blocks the boot process.
>
> Thank you,
> Miroslav
>
I don't believe anything in /var/selinux is necessary during boot. The
policy store in /var/selinux is only used with commands like
semodule/semanage/etc. so as long as those aren't run during boot I
suspect it should be fine.
- Steve
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: New module store + /var being split off
2015-06-12 15:18 New module store + /var being split off Miroslav Grepl
2015-06-12 15:50 ` Steve Lawrence
@ 2015-06-12 15:53 ` Sven Vermeulen
1 sibling, 0 replies; 3+ messages in thread
From: Sven Vermeulen @ 2015-06-12 15:53 UTC (permalink / raw)
To: selinux
On Fri, Jun 12, 2015 at 05:18:31PM +0200, Miroslav Grepl wrote:
> We are close to get the latest userspace (modules store + CIL) into
> Fedora. We just have a discussion about "/var" being split off and be
> mounted only very late at boot.
>
> Can you think about an issue with that? I don't see any urgent blocker
> which blocks the boot process.
As far as I can see, there is no impact upon the boot process from anything
in /var/lib/selinux. This location only matters when you want to rebuild the
policy (or manipulate the policy, for instance when SELinux booleans are
being changed and persisted).
In Gentoo we have the 2.4 userspace in our "testing" branch for a while and
I did not receive any reports yet related to /var being a separate file
system.
Wkr,
Sven Vermeulen
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2015-06-12 15:53 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2015-06-12 15:18 New module store + /var being split off Miroslav Grepl
2015-06-12 15:50 ` Steve Lawrence
2015-06-12 15:53 ` Sven Vermeulen
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.