summaryrefslogtreecommitdiff
path: root/helpers/lh_chroot_selinuxfs
blob: 0a463e89996d687334ffac8f7f237b71060eed74 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
#!/bin/sh

# lh_chroot_sysfs(1) - mount /selinux
# Copyright (C) 2006-2009 Daniel Baumann <daniel@debian.org>
#
# live-helper comes with ABSOLUTELY NO WARRANTY; for details see COPYING.
# This is free software, and you are welcome to redistribute it
# under certain conditions; see COPYING for details.

set -e

# Including common functions
. "${LH_BASE:-/usr/share/live-helper}"/functions.sh

# Setting static variables
DESCRIPTION="$(Echo 'mount /selinux')"
HELP=""
USAGE="${PROGRAM} {install|remove} [--force]"

Arguments "${@}"

# Ensure that a system is built as root
lh_testroot

# Reading configuration files
Read_conffiles config/all config/common config/bootstrap config/chroot config/binary config/source
Set_defaults

# Requiring stage file
Require_stagefile .stage/config .stage/bootstrap

case "${1}" in
	install)
		if [ -e /selinux/enforce ] && [ "$(cat /selinux/enforce)" = "1" ]
		then
			Echo_message "Begin mounting /selinux..."

			# Checking stage file
			Check_stagefile .stage/chroot_selinuxfs

			# Checking lock file
			Check_lockfile .lock

			# Creating lock file
			Create_lockfile .lock

			if [ "${LH_USE_FAKEROOT}" != "enabled" ]
			then
				# Create mountpoint
				mkdir -p chroot/selinux

				# Mounting /selinux
				${LH_ROOT_COMMAND} mount selinuxfs-live -t selinuxfs chroot/selinux
			else
				rm -rf chroot/selinux
				ln -s /selinux chroot/
			fi

			# Creating stage file
			Create_stagefile .stage/chroot_selinuxfs
		fi
		;;

	remove)
		Echo_message "Begin unmounting /selinux..."

		# Checking lock file
		Check_lockfile .lock

		# Creating lock file
		Create_lockfile .lock

		if [ "${LH_USE_FAKEROOT}" != "enabled" ]
		then
			# Unmounting /selinux
			#fuser -km chroot/selinux
			if [ -e chroot/selinux/enforce ]
			then
				${LH_ROOT_COMMAND} umount chroot/selinux
			fi
		else
			if [ -e chroot/selinux ]
			then
				rm -rf chroot/selinux
				mkdir -p chroot/selinux
			fi
		fi

		# Removing stage file
		rm -f .stage/chroot_selinux
		;;

	*)
		Usage
		;;
esac