From a5a807e63a50314e190e9166d8a453cd8dd258e3 Mon Sep 17 00:00:00 2001
From: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
Date: Mon, 13 Oct 2014 22:27:43 -0400
Subject: resolved: apply label to /run/systemd/resolve/resolv.conf

Under an SELinux system, we want the file that is created to
have a proper context, different from the default for files in /run.
This is so that the policy can give access to almost everyone to
this file.
---
 src/resolve/resolved-manager.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'src/resolve/resolved-manager.c')

diff --git a/src/resolve/resolved-manager.c b/src/resolve/resolved-manager.c
index ec181fad32..74f4ad5dba 100644
--- a/src/resolve/resolved-manager.c
+++ b/src/resolve/resolved-manager.c
@@ -34,6 +34,7 @@
 #include "socket-util.h"
 #include "af-list.h"
 #include "utf8.h"
+#include "fileio-label.h"
 
 #include "resolved-dns-domain.h"
 #include "resolved-conf.h"
@@ -821,7 +822,7 @@ int manager_write_resolv_conf(Manager *m) {
                 }
         }
 
-        r = fopen_temporary(path, &f, &temp_path);
+        r = fopen_temporary_label(path, path, &f, &temp_path);
         if (r < 0)
                 return r;
 
-- 
cgit v1.2.3-54-g00ecf