summaryrefslogtreecommitdiff
path: root/user/dracut/mount-run-without-noexec.patch
diff options
context:
space:
mode:
Diffstat (limited to 'user/dracut/mount-run-without-noexec.patch')
-rw-r--r--user/dracut/mount-run-without-noexec.patch17
1 files changed, 17 insertions, 0 deletions
diff --git a/user/dracut/mount-run-without-noexec.patch b/user/dracut/mount-run-without-noexec.patch
new file mode 100644
index 000000000..2bb9f2ad4
--- /dev/null
+++ b/user/dracut/mount-run-without-noexec.patch
@@ -0,0 +1,17 @@
+--- dracut-048/modules.d/99base/init.sh.old 2018-07-06 08:37:51.000000000 +0000
++++ dracut-048/modules.d/99base/init.sh 2018-08-25 21:55:39.830000000 +0000
+@@ -64,12 +64,8 @@
+
+ if ! ismounted /run; then
+ mkdir -m 0755 /newrun
+- if ! str_starts "$(readlink -f /bin/sh)" "/run/"; then
+- mount -t tmpfs -o mode=0755,noexec,nosuid,nodev,strictatime tmpfs /newrun >/dev/null
+- else
+- # the initramfs binaries are located in /run, so don't mount it with noexec
+- mount -t tmpfs -o mode=0755,nosuid,nodev,strictatime tmpfs /newrun >/dev/null
+- fi
++ # s6 runscripts live in /run, so don't mount it with noexec
++ mount -t tmpfs -o mode=0755,nosuid,nodev,strictatime tmpfs /newrun >/dev/null
+ cp -a /run/* /newrun >/dev/null 2>&1
+ mount --move /newrun /run
+ rm -fr -- /newrun