fix selinux disabled state

author Harald Hoyer <harald@redhat.com>

Mon, 15 Feb 2010 11:58:00 +0000 (12:58 +0100)

committer Harald Hoyer <harald@redhat.com>

Mon, 15 Feb 2010 11:58:00 +0000 (12:58 +0100)
author Harald Hoyer <harald@redhat.com>
Mon, 15 Feb 2010 11:58:00 +0000 (12:58 +0100)
committer Harald Hoyer <harald@redhat.com>
Mon, 15 Feb 2010 11:58:00 +0000 (12:58 +0100)
diff --git a/modules.d/99base/selinux-loadpolicy.sh b/modules.d/99base/selinux-loadpolicy.sh

index 5b91ee6..f3bacec 100755 (executable)
--- a/modules.d/99base/selinux-loadpolicy.sh
+++ b/modules.d/99base/selinux-loadpolicy.sh
@@ -7,10 +7,11 @@ rd_load_policy()
      SELINUX="enforcing"
      [ -e "$NEWROOT/etc/selinux/config" ] && . "$NEWROOT/etc/selinux/config"
  
+    disabled=0
      # If SELinux is disabled exit now 
      getarg "selinux=0" > /dev/null
      if [ $? -eq 0 -o "$SELINUX" = "disabled" ]; then
-       return 0
+       disabled=1
      fi
  
      # Check whether SELinux is in permissive mode
@@ -36,6 +37,10 @@ rd_load_policy()
              fi
         } 2>&1 | vinfo
  
+       if [ $disabled -eq 1 ]; then
+           return 0;
+       fi
+
         if [ $ret -eq 0 -o $ret -eq 2 ]; then
             # If machine requires a relabel, force to permissive mode
             [ -e "$NEWROOT"/.autorelabel ] && ( echo 0 > "$NEWROOT"/selinux/enforce )
author	Harald Hoyer <harald@redhat.com>
	Mon, 15 Feb 2010 11:58:00 +0000 (12:58 +0100)
committer	Harald Hoyer <harald@redhat.com>
	Mon, 15 Feb 2010 11:58:00 +0000 (12:58 +0100)