Linda Knippers wrote:
Michael C Thompson wrote:
OK, so I managed to get this to work. However, I need to setenforce 0
first. This is with the selinux-policy-2.4.6-9.fc7 set of packages. I
upgraded prior to the LSPP call.
There seems to be some difference in doing the rpm -ivh kernel.rpm in
permissive mode, and run_init rpm -ivh kernel.rpm as secadm_r, but I
have no idea what...
I wouldn't have expected it to work from run_init because run_init is
for running init scripts. I wouldn't have necessarily expected it to
run as secadm_r but I would expect it to work as sysadm_r. However, it
doesn't. I don't think it ever has.
Right, I think Dan Walsh said you are supposed to use run_init. Copied
Dan directly on this note.
I tried it as sysadm_r systemhigh and got an error form mkinitrd, which
I have since lost, but I also got alot of avc denies (attached).
Right, doing things as SystemHigh aren't normally needed.
I removed the rpm and tried it again as sysadm_r systemlow-systemhigh and
ended up with fewer avcs (attached) but an unbootable system.
Unable to access resume device (/dev/VolGroup00/LogVol01)
mount: could not find filesystem '/dev/root'
setuproot: moving /dev failed: No such file or directory
setuproot: error mounting /proc: No such file or directory
setuproot: error mounting /sys: No such file or directory
switchroot: mount failed: No such file or directory
Kernel panic - not syncing: Attempted to kill init!
Yup, that's what I get. Something has to be wrong with the initrd
Mike
--
redhat-lspp mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-lspp
