Red Hat Bugzilla – Bug 187940
Problem switching to mls policy right after install
Last modified: 2007-11-30 17:11:29 EST
Description of problem:
I have a desktop PC which has another OS on sda1
sda2 is configured as /boot
sda3 is LVM
inside that there is:
/dev/VolGroup00/LogVol00 as /
/dev/VolGroup00/LogVol01 as swap
Version-Release number of selected component (if applicable):
FC5 base with no updates or extras
After that I added Dan's policy repo
and ran `yum install selinux-policy-mls`
which grabbed selinux-policy-mls-2.2.29-3.fc5 along with
I've done it on a couple systems now.
How to reproduce:
Install with the defaults, "removing all linux partitions" so that it uses LVM
I didn't select any customization of packages, but I did check the software
Add the repo and mls packages
use the System->Administration->'Security Level and Firewall' tool to switch to
the MLS policy. Leave it in enforcing mode.
When the system boots I see the screen captured at the URL listed
I then have to cold boot the system, I can edit the grub command line to have
enforcing=0 and then the system boots, however it doesn't relabel the filesystem
at that time.
The system should boot and relabel the file system.
On the LSPP call the other day I referenced doing this on a laptop. I have
since reproduced this on a desktop system (HP DC7600C) and gotten similar results.
Sorry the pic is a little blurry :(
Fixed in rawhide.