dump/restore and SElinux security context problem
Tony Nelson
tonynelson at georgeanelson.com
Sun Apr 23 18:39:43 UTC 2006
At 8:06 PM -0700 4/22/06, Kayvan A. Sylvan wrote:
>Hi everyone.
>
>I was trying to upgrade from FC4 to FC5, but my root partition was too small
>to accomodate the DVD image. So, I had to resize some partitions. GNU parted
>was useless in that task (see Redhat Bugzilla Bug 90894).
>
>Finally, I used "dump" to create a snapshot of a filesystem, then, using
>the FC5 DVD to boot into rescue mode, used "restore" to recreate it.
>
>The problem: during the restore, for every file, I get messages like this:
>
> restore: lsetxattr ./System.map-2.6.15-1.1833_FC4 failed: Invalid argument
>
>This feels like it's related to SELinux. In fact, looking at
>the restored files with "ls -Z", I see that they are all unlabeled.
>
>If I don't use the rescue CD, and instead, on a running system where SELinux
>is enabled, do the following:
>
>1) setenforce 0
>2) restore from the dump.
>3) setenforce 1
>
>Then, the restored files are in their correct security context.
>
>How do I get this same result (files completely restored, along with
>their extended attributes) while using the rescue CD?
When booting the rescue CD, use the kernel command line:
linux rescue enforcing=0
along with any other options you need (when I remember, I use "hda=noprobe
hdb=noprobe").
____________________________________________________________________
TonyN.:' <mailto:tonynelson at georgeanelson.com>
' <http://www.georgeanelson.com/>
More information about the users
mailing list