From baa3edb3caf96c01fd95a3cdffe65568ac62bc0f Mon Sep 17 00:00:00 2001
From: ligc <liguangc@cn.ibm.com>
Date: Tue, 26 Nov 2013 16:49:09 +0800
Subject: [PATCH] fix for bug 4372, set selinux be in permissive mode for RHEL
 7

---
 xCAT-server/sbin/xcatconfig | 22 +++++++++++++++++-----
 1 file changed, 17 insertions(+), 5 deletions(-)

diff --git a/xCAT-server/sbin/xcatconfig b/xCAT-server/sbin/xcatconfig
index 57b03ec70..48d88e15d 100755
--- a/xCAT-server/sbin/xcatconfig
+++ b/xCAT-server/sbin/xcatconfig
@@ -479,12 +479,24 @@ if ($::INITIALINSTALL || $::FORCE)
          if ($rc == 0)
          {
              xCAT::MsgUtils->message('W', "SELINUX is not disabled, disabling it now...");
-             # Disable selinux for running system
-             my $cmd = "echo 0 > /selinux/enforce";
-             my $outref = xCAT::Utils->runcmd("$cmd", 0);
-             if ($::RUNCMD_RC != 0)
+             # set selinux be in permissive mode for running system,
+             # if the user forgot to disable selinux, 
+             # try to not hurt xcat too much
+             my $enforcefile;
+             if ( -f "/selinux/enforce")
              {
-                xCAT::MsgUtils->message('E', "Failed to disable SELINUX.");
+                 $enforcefile = "/selinux/enforce";
+             } elsif ( -f "/sys/fs/selinux/enforce" ) {
+                 $enforcefile = "/sys/fs/selinux/enforce";
+             }
+             if ($enforcefile)
+             {
+                 my $cmd = "echo 0 > $enforcefile";
+                 my $outref = xCAT::Utils->runcmd("$cmd", 0);
+                 if ($::RUNCMD_RC != 0)
+                 {
+                    xCAT::MsgUtils->message('E', "Failed to disable SELINUX.");
+                 }
              }
              # Disable selinux through reboots
              my $cmd = "sed -i 's/^SELINUX=.*\$/SELINUX=disabled/' /etc/selinux/config";