On Sun, May 3, 2020 at 4:40 AM Jerry James <loganjerry(a)gmail.com> wrote:
On Sat, May 2, 2020 at 4:33 AM Christopher <ctubbsii(a)fedoraproject.org> wrote:
> Those are bugs filed against RPM. Is the RPM package responsible for
> executing lsetfilecon, or is it the grub2 package? If the grub2
> package, it seems to me that they should know that EFI partitions will
> never support lsetfilecon and they should never try. If it's RPM, then
> it looks like it is suppressed upstream and the fix will be
> incorporated eventually. I guess I don't know which component is
> actually responsible for causing the execution of lsetfilecon.
You're right, but there is discussion of the grub2 issue in bug
1722766. A number of bugs have been filed against grub2 specifically:
Nothing in the grub2 package executes restorecon for the files in
/boot/efi. The problem is that rpm calls lgetxattr() for each entry in
%files, regardless if the filesystem supports extended attributes or
not:
https://bugzilla.redhat.com/show_bug.cgi?id=1722766#c43
https://github.com/rpm-software-management/rpm/pull/976
I've been closing as duplicates of #1722766 but we are just getting
too many bugs filed for this issue.
Best regards,
Javier