On Thu, Sep 03, 2015 at 11:18:01AM -0400, Steve Lawrence wrote: > We don't currently store homedir_template in the policy store, which > means genhomedircon only has a template file to use if the > homedir_template was generated from the file contexts in the same > transaction. But homedir_template isn't always generated, as in the > case with setsebool -P. In this and other cases, genhomedircon will not > have a template file resulting in an empty file_contexts.homedir file. > > This commit changes this so that homedir_template is always stored in > the policy store so it can be used by genhomedircon regardless of how > policy was built. Also add the homedir_template file to the migration > script. > > Signed-off by: Steve Lawrence <slawrence@xxxxxxxxxx> This does indeed fix my problem. Thanks for the quick fix! I have backported the patch to gentoo. It seems fairly important so i'd recommend any other distros on 2.4 do that too. I locked myself out of one of my machines once :( Tested by: Jason Zaman <jason@xxxxxxxxxxxxx> _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
