Hu
ee9959537f
- %selinux_relabel_post should not relabel files in transactional systems in %post as the policy is not loaded into the kernel directly after install, instead the relabelling will happen on the next boot OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=276
29 lines
648 B
Bash
29 lines
648 B
Bash
#!/bin/sh
|
|
|
|
date=$(date '+%Y%m%d')
|
|
base_name_pattern='selinux-policy-*.tar.xz'
|
|
echo Update to $date
|
|
|
|
old_tar_file=$(ls -1 $base_name_pattern)
|
|
|
|
osc service manualrun
|
|
|
|
if [ "$1" = "full" ]; then
|
|
echo doing full update including container-selinux
|
|
rm -rf container-selinux
|
|
git clone --depth 1 https://github.com/containers/container-selinux.git
|
|
rm -f container.*
|
|
mv container-selinux/container.* .
|
|
rm -rf container-selinux
|
|
fi
|
|
|
|
# delete old files. Might need a better sanity check
|
|
tar_cnt=$(ls -1 $base_name_pattern | wc -l)
|
|
if [ $tar_cnt -gt 1 ]; then
|
|
echo delte old file $old_tar_file
|
|
rm "$old_tar_file"
|
|
osc addremove
|
|
fi
|
|
|
|
osc status
|