Bug#440709: patch for initscript

Mon, 02 Aug 2010 02:03:28 -0700 

tags 440709 +patch
thanks

Hi there,

AppArmor might be in in 2.6.36. I have owned the bug. Michael, please let me 
know if you would like to co-maintain.

I've gone through this bug report and hope the attach patch should fulfill this 
report. In this patch, securityfs is not mounted with any explicit options. To 
my knowledge, apparmor does not have special mount option requirements on 
securityfs.
-- 
Ritesh Raj Sarraf | http://people.debian.org/~rrs
Debian - The Universal Operating System

Index: debian/src/initscripts/etc/init.d/umountfs
===================================================================
--- debian/src/initscripts/etc/init.d/umountfs	(revision 1940)
+++ debian/src/initscripts/etc/init.d/umountfs	(working copy)
@@ -42,7 +42,7 @@
 			;;
 		esac
 		case "$FSTYPE" in 
-		  proc|procfs|linprocfs|sysfs|usbfs|usbdevfs|devpts)
+		  proc|procfs|linprocfs|sysfs|securityfs|usbfs|usbdevfs|devpts)
 			continue
 			;;
 		  tmpfs)
Index: debian/src/initscripts/etc/init.d/mountkernfs.sh
===================================================================
--- debian/src/initscripts/etc/init.d/mountkernfs.sh	(revision 1940)
+++ debian/src/initscripts/etc/init.d/mountkernfs.sh	(working copy)
@@ -46,6 +46,15 @@
 		domount sysfs "" /sys sysfs -onodev,noexec,nosuid
 	fi
 
+	#
+	# Mount securityfs on /sys/kernel/security
+	#
+	# Only mount securityfs if it is supported
+	if grep -E -qs "securityfs\$" /proc/filesystems
+	then
+		domount securityfs "" /sys/kernel/security securityfs
+	fi
+
 	# Mount /var/run and /var/lock as tmpfs if enabled
 	if [ yes = "$RAMRUN" ] ; then
 		RUN_OPT=
Index: debian/src/initscripts/etc/init.d/mtab.sh
===================================================================
--- debian/src/initscripts/etc/init.d/mtab.sh	(revision 1940)
+++ debian/src/initscripts/etc/init.d/mtab.sh	(working copy)
@@ -115,6 +115,10 @@
 	then
 		domtab sysfs /sys sysfs -onodev,noexec,nosuid
 	fi
+	if grep -E -qs "securityfs\$" /proc/filesystems
+	then
+		domtab securityfs /sys/kernel/security securityfs
+	fi
 	if [ yes = "$RAMRUN" ] ; then
 		RUN_OPT=
 		[ "${RUN_SIZE:=$TMPFS_SIZE}" ] && RUN_OPT=",size=$RUN_SIZE"
Index: debian/changelog
===================================================================
--- debian/changelog	(revision 1940)
+++ debian/changelog	(working copy)
@@ -1,3 +1,10 @@
+sysvinit (2.88dsf-11.1) unstable; urgency=low
+
+  [ Ritesh Raj Sarraf ]
+  * Mount securityfs is supported by the kernel (Closes: #440709) 
+
+ -- Ritesh Raj Sarraf <r...@debian.org>  Mon, 02 Aug 2010 14:06:46 +0530
+
 sysvinit (2.88dsf-11) unstable; urgency=low
 
   * Avoid /usr/bin/find in init.d/urandom to be able to run it before

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply via email to