install of kernel 2.6.4-1.298 does not work

[Tom Mitchell]

On Tue, Mar 30, 2004 at 10:58:10PM -0500, Richard Hally wrote:
> 
> when I ran up2date today it appeared to install kernel 2.6.4-1.298. 
> There were no errors reported.  But it did not update grub as usual, it 
> did not put any files in /boot, and when I do rpm -q kernel it does not 
> show 2.6.4-1.298 (It shows the other kernels 253 etc)
> [root at old1 boot]# rpm -q kernel

I noticed this too.  As my normal user I had done a 
   "newrole -r sysadm" --> "su -" --> "up2date"
in a text window.  I found that up2date never really updated the rpm's
that it had downloaded.

Did I find log messages that the rpm files in /var/spool/up2date
were not readable?
 avc:  denied  { read } for  pid=3000 exe=/sbin/ldconfig path=/var/spool/up2date/zip-2.3-22.i386.rpm dev=hda2 ino=2098001 scontext=mitch:sysadm_r:ldconfig_t tcontext=mitch:object_r:var_spool_t tclass=file

Then when logged in as root and "newrole -r sysadm_r" up2date did install
most.   I confess that at one point I got lazy and turned off enforcing...., 
and then finished .... up2date'd, reboot, make  policy, make load, make relabel...

In part it might be a umask and label issue.
   # ls -l /var/spool/up2date/zip*
   -rw-------  ...
But I do not know how ownership, umask and labels all play (yet).
   scontext=mitch:sysadm_r:ldconfig_
   tcontext=mitch:object_r:var_spool_t
 .vs.
   system_u:object_r:var_spool_t

Some of this may be historic because of the updates... now with the
latest policy and my tunable.te changes.  A number of transitions
seem smoother

Anyhow... # uname -a
Linux xtl2 2.6.4-1.298 #1 Mon Mar 29 15:11:58 EST 2004 i686 athlon i386 GNU/Linux


-- 
	T o m  M i t c h e l l 
	/dev/null the ultimate in secure storage.