Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 1247017
Summary: | SELinux is preventing kexec from 'read', 'open' and 'getattr' accesses on /boot/vmlinuz* | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Jakub Filak <jfilak> |
Component: | systemd | Assignee: | systemd-maint |
Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 23 | CC: | dominick.grift, dwalsh, jberan, johannbg, jsynacek, lnykryn, lvrabec, mgrepl, msekleta, plautrba, ruyang, s, systemd-maint, zbyszek |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2016-02-10 14:34:59 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1244057 |
Description
Jakub Filak
2015-07-27 07:32:20 UTC
On Fedora 23 this bug is more severe because kdump cannot start even with bundled kernel. $ ls -Z /boot/vmlinuz-* system_u:object_r:boot_t:s0 /boot/vmlinuz-0-rescue-9e1725064a94497289316879f51a108f system_u:object_r:boot_t:s0 /boot/vmlinuz-4.1.7-200.fc22.x86_64 system_u:object_r:modules_object_t:s0 /boot/vmlinuz-4.2.5-300.fc23.x86_64 This bug is caused by that kernel-install didn't handle file context properly after copying bzImage. It has been fixed in http://pkgs.fedoraproject.org/cgit/systemd.git/commit/?id=d4f265678413c7656d78074af12ec7f083b50aac , but hasn't been merged into f23 branch. *** This bug has been marked as a duplicate of bug 1244057 *** |