Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-82097

[c10s] bump ignition-edge to fix read-only /usr mount (systemd v256)

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • rhel-10.0
    • ignition
    • No
    • None
    • rhel-coreos
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • Rejected Exception
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      systemd v256 now runs the initrd with ProtectSystem=yes, which makes /usr read-only:

      https://github.com/systemd/systemd/blob/07748c53df5a72111d8b3eef49d275210d6018cd/NEWS#L168-L175

      This breaks coreos-ignition-setup-user which wants to copy the Ignition config to /usr/lib/ignition.

      we can safely remount /usr read-write ourselves without affecting the rest of the system since we're already running with MountFlags=slave.

              coreos-bot CoreOS Bot
              amurdaca@redhat.com Antonio Murdaca
              CoreOS Bot CoreOS Bot
              CoreOS QE Bot CoreOS QE Bot
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: