Revision as of 14:03, 13 July 2022

SELinux Parallel Autorelabel

Summary

Owner

Name: Petr Lautrbach
Email: plautrba@redhat.com

Current status

Targeted release: Fedora Linux 37
Last updated: 2022-07-13
FESCo issue: <will be assigned by the Wrangler>
Tracker bug: <will be assigned by the Wrangler>
Release notes tracker: <will be assigned by the Wrangler>

Detailed Description

restorecon and fixfiles support '-T nthreads' so lets make it default.

Feedback

Benefit to Fedora

Faster reboot after switch back to SELinux enabled system

Scope

Proposal owners:
- Update selinux-*.service to drop '-T nthread' into /.autorelabel

Other developers:

Release engineering: #Releng issue number

Policies and guidelines: N/A (not needed for this Change)

Trademark approval: N/A (not needed for this Change)

Alignment with Objectives:

Upgrade/compatibility impact

How To Test

1. boot with SELinux disabled - add selinux=0 to kernel command line 2. check /.autorebale 3. compare times for reboot after 1.,2. and if you put '-T 1' into /.autorelabel

User Experience

Systems should be sooner available for work after autorelabel

Dependencies

Contingency Plan

Contingency mechanism: (What to do? Who will do it?) N/A (not a System Wide Change)
Contingency deadline: N/A (not a System Wide Change)
Blocks release? N/A (not a System Wide Change), Yes/No

Documentation

N/A (not a System Wide Change)

Release Notes

@@ Line 28: / Line 28: @@
 <!-- [[Category:SystemWideChange]] -->
-* Targeted release: [[Releases/<number> | Fedora Linux <number> ]]
+* Targeted release: [[Releases/37 | Fedora Linux 37 ]]
 * Last updated: <!-- this is an automatic macro — you don't need to change this line -->  {{REVISIONYEAR}}-{{REVISIONMONTH}}-{{REVISIONDAY2}}
 <!-- After the change proposal is accepted by FESCo, tracking bug is created in Bugzilla and linked to this page

Search

Changes/SELinux Parallel Autorelabel: Difference between revisions