Control: tag -1 moreinfo On Mon, 2018-08-20 at 11:36 +0200, Laurent Bigonville wrote: > Package: linux-base > Version: 4.5 > Severity: normal > File: /usr/bin/linux-update-symlinks > User: selinux-devel@lists.alioth.debian.org > Usertags: selinux > > Hi, > > After updating the kernel it seems that the /vmlinuz(.old) and > /initrd.img(.old) symlinks are deleted and then recreated. > > This means that the SELinux label of these symlinks should be reset. > > The easiest way of doing that is (as there are no perl bindings) to call > restorecon executable if the executable is installed on the machine as > it handel the case were selinux is disabled on the machine gracefully > > ie. restorecon /vmlinuz Why is this needed? Only boot loaders should be using these symlinks and they don't know or care about SELinux stuff. Ben. -- Ben Hutchings For every action, there is an equal and opposite criticism. - Harrison
Attachment:
signature.asc
Description: This is a digitally signed message part