mirror of
https://github.com/rancher/os.git
synced 2025-07-03 18:16:13 +00:00
34 lines
688 B
Go
34 lines
688 B
Go
// +build linux
|
|
|
|
package selinux
|
|
|
|
import (
|
|
"io/ioutil"
|
|
|
|
"github.com/rancher/os/config"
|
|
"github.com/rancher/os/pkg/log"
|
|
"github.com/rancher/os/pkg/selinux"
|
|
)
|
|
|
|
func Initialize(c *config.CloudConfig) (*config.CloudConfig, error) {
|
|
ret, _ := selinux.InitializeSelinux()
|
|
|
|
if ret != 0 {
|
|
log.Debug("Unable to initialize SELinux")
|
|
return c, nil
|
|
}
|
|
|
|
// Set allow_execstack boolean to true
|
|
if err := ioutil.WriteFile("/sys/fs/selinux/booleans/allow_execstack", []byte("1"), 0644); err != nil {
|
|
log.Debug(err)
|
|
return c, nil
|
|
}
|
|
|
|
if err := ioutil.WriteFile("/sys/fs/selinux/commit_pending_bools", []byte("1"), 0644); err != nil {
|
|
log.Debug(err)
|
|
return c, nil
|
|
}
|
|
|
|
return c, nil
|
|
}
|