Bug 391451
Summary: | SELinux: Chroot Install/Update with Enforcing Mode | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Warren Togami <wtogami> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NEXTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 9 | CC: | dwalsh, mebrown, rvokal |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2009-01-08 18:30:20 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 188611 |
Description
Warren Togami
2007-11-20 04:24:55 UTC
Talked a bit with dwalsh about this last week. anaconda with --noselinux will install a chroot unlabeled, which installs and internally yum updates just fine. This will suit the needs for LTSP initially. Supporting SELinux enabled netboot workstations later however will require far more difficult changes to how SELinux works. Which executable do you use to create this environment? anaconda without --noselinux will label the contents inside, causing things to explode during installation if enforcing (broken chroot). You need to set it to permissive to install with labeling. That is a problem. Changing version to '9' as part of upcoming Fedora 9 GA. More information and reason for this action is here: http://fedoraproject.org/wiki/BugZappers/HouseKeeping Changes are rolling into Fedora 9 to allow livecd to create a system in enforcing mode. These changes should help with this problem. the -26 kernel is required |