Package: policycoreutils Version: 2.0.49-8 Severity: important Hi,
when used with a 2.6.31.x kernel restorecond eats up 99+% CPU at boot. I assume it is a similar issue as the inotify/utmp problem fixed in version 2.0.74-1 according to the changelog. However, here it is triggered with /var/run/utmp removed from /etc/selinux/restorecond.conf. I can clear it by: - invoke-rc.d policycoreutils restart - saving restorecond.conf with an editor while restorecond runs, not necessarily changing restorecond.conf I can't clear it by: - touch /etc/selinux/restorecond.conf I think the bug was triggered once when installing a batch of packages that should not have touched any file listed in restorecond.conf, but I'm not 100% sure I had restarted restorecond before. I'm filing this bug as important because it seriously affects the usability for users of 2.6.31.x kernels while not being noticeable to users of regular kernels as shipped with lenny. As there will probably be no 2.6.31+ kernel in lenny I guess that backporting a bugfix or upgrading policycoreutils is unlikely. Before downgrading or closing this bug I'd suggest to: - not start restorecond on lenny with 2.6.31+ kernels (if this is feasible) or - print a message mentioning the incompatibility with 2.6.31+ kernels during installation or boot so people building their own 2.6.31+ kernels are aware of the problem. Regards Jens -- System Information: Debian Release: 5.0.3 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.31.5 Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=UTF-8) (ignored: LC_ALL set to de_DE.utf8) Shell: /bin/sh linked to /bin/bash Versions of packages policycoreutils depends on: ii libc6 2.7-18 GNU C Library: Shared libraries ii libpam0g 1.0.1-5+lenny1 Pluggable Authentication Modules l ii libselinux1 2.0.65-5 SELinux shared libraries ii libsemanage1 2.0.25-3 shared libraries used by SELinux p ii libsepol1 2.0.30-2 Security Enhanced Linux policy lib ii python 2.5.2-3 An interactive high-level object-o ii python-selinux 2.0.65-5 Python bindings to SELinux shared ii python-semanage 2.0.25-3 Python bindings for SELinux polic ii python-sepolgen 1.0.11-5 A Python module used in SELinux po Versions of packages policycoreutils recommends: pn selinux-policy-default <none> (no description available) policycoreutils suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
