----- Original Message ----- > On Tue, 2012-05-29 at 11:02 +0200, Martin Gracik wrote: > > Selinux causes problems for rpm scriptlets in the installroot. > > You could use the selinux module instead: I was looking at this, I tried selinux_getenforcemode() and it didn't work. I must have overlooked the security_getenforce() method. Thanks. > > import selinux > if selinux.security_getenforce(): > ... > > There's also selinux.security_setenforce(), if you want to turn it > off.. I don't want to turn off anything in lorax. User should be aware he needs to turn it off. > > Also, could you make a note (in a comment in the code) about *why* we > need to turn off SELinux (i.e. what goes wrong when it's left on), so > we > can work on fixing that later? I don't think we can fix it. Selinux just does not behave very good in chroots. And I put in the comment "Selinux causes problems for rpm scriptlets in the installroot.". Not enough? :) > > -w > > _______________________________________________ > Anaconda-devel-list mailing list > Anaconda-devel-list@xxxxxxxxxx > https://www.redhat.com/mailman/listinfo/anaconda-devel-list > _______________________________________________ Anaconda-devel-list mailing list Anaconda-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/anaconda-devel-list
