systemd uses a helper process (sd-listen) to create sockets and pass their fds back to its parent. I've patched systemd to call semanage to get the context for the port if it exists and create a context using the returned type when calling setsockcreatecon. Everything looks right i.e. the port type is retrieved, the context is created and setsockcreatecon is called without errors. However 'netstat -Z' shows the listening sockets type as init_t and not the type in the setsockcreatecon call, is this the expected behavior? Can anyone help me understand why this is happening? Ted
