From: Christian Göttsche <cgzones@googlemail.com>
Date: Tue, 1 Sep 2020 13:49:20 +0000 (+0200)
Subject: selinux: create systemd/notify socket with default SELinux context
X-Git-Tag: v247-rc1~317^2~1
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=45ae2f725e42d8fc64cd4867f11d8c4e95eced26;p=thirdparty%2Fsystemd.git

selinux: create systemd/notify socket with default SELinux context
---

diff --git a/src/core/manager.c b/src/core/manager.c
index bd02337fafa..5372e81d973 100644
--- a/src/core/manager.c
+++ b/src/core/manager.c
@@ -63,6 +63,7 @@
 #include "ratelimit.h"
 #include "rlimit-util.h"
 #include "rm-rf.h"
+#include "selinux-util.h"
 #include "serialize.h"
 #include "signal-util.h"
 #include "socket-util.h"
@@ -963,9 +964,9 @@ static int manager_setup_notify(Manager *m) {
                 (void) mkdir_parents_label(m->notify_socket, 0755);
                 (void) sockaddr_un_unlink(&sa.un);
 
-                r = bind(fd, &sa.sa, sa_len);
+                r = mac_selinux_bind(fd, &sa.sa, sa_len);
                 if (r < 0)
-                        return log_error_errno(errno, "bind(%s) failed: %m", m->notify_socket);
+                        return log_error_errno(r, "bind(%s) failed: %m", m->notify_socket);
 
                 r = setsockopt_int(fd, SOL_SOCKET, SO_PASSCRED, true);
                 if (r < 0)