From 6f080e9c1a2a9b9c308cdc03f9cf782c4ce4d440 Mon Sep 17 00:00:00 2001
From: Jason Zaman <jason@perfinion.com>
Date: Wed, 13 Aug 2014 10:50:34 +0400
Subject: [PATCH] tmpfiles: Move relabelling before any other calls for device
 nodes

Device nodes are normally never device_t so this type does not
have many permissions. After the mknod, the device should have
its label corrected before any other operations (like chmod).
---
 sh/tmpfiles.sh.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/sh/tmpfiles.sh.in b/sh/tmpfiles.sh.in
index 63c5d142..85385453 100755
--- a/sh/tmpfiles.sh.in
+++ b/sh/tmpfiles.sh.in
@@ -65,8 +65,8 @@ _b() {
 	local path=$1 mode=$2 uid=$3 gid=$4 age=$5 arg=$6
 	if [ ! -e "$path" ]; then
 		dryrun_or_real mknod -m $mode $path b ${arg%:*} ${arg#*:}
-		dryrun_or_real chown $uid:$gid $path
 		_restorecon "$path"
+		dryrun_or_real chown $uid:$gid $path
 	fi
 }
 
@@ -75,8 +75,8 @@ _c() {
 	local path=$1 mode=$2 uid=$3 gid=$4 age=$5 arg=$6
 	if [ ! -e "$path" ]; then
 		dryrun_or_real mknod -m $mode $path c ${arg%:*} ${arg#*:}
-		dryrun_or_real chown $uid:$gid $path
 		_restorecon "$path"
+		dryrun_or_real chown $uid:$gid $path
 	fi
 }