Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-58179

Remove SELinux policy module

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Major Major
    • rhel-9.6
    • rhel-9.5
    • systemd
    • None
    • systemd-252-47.el9
    • No
    • Important
    • ZStream
    • rhel-plumbers
    • ssg_core_services
    • 26
    • 2
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • Approved Blocker
    • All
    • None

      What were you trying to do that didn't work?

      Since RHEL-9.4 we also ship our own SELinux policy module that allows systemd-coredump to properly generate backtrace for containerized processes.

      What is the impact of this issue to you?

      Shipping and installing this module causes fair bit of troubles, it adds extra dependencies to systemd on selinux-policy and we need to ship workaround that makes sure that module is actually installed (sometimes due to cyclic RPM dependencies it might end up that selinux-policy is not installed before systemd).

      Please provide the package NVR for which the bug is seen:

      systemd-252-39

      How reproducible is this bug?:

      always

      Steps to reproduce

      1. semodule -l | grep systemd-container-coredump 

      Expected results

      systemd-container-coredump module is not installed

      Actual results

      systemd-container-coredump module is installed

              msekleta@redhat.com Michal Sekletar
              msekleta@redhat.com Michal Sekletar
              systemd maint mailing list systemd maint mailing list
              Frantisek Sumsal Frantisek Sumsal
              Votes:
              0 Vote for this issue
              Watchers:
              11 Start watching this issue

                Created:
                Updated:
                Resolved: