[CentOS] SELinux messages after compiling new kernel

Johnny Hughes johnny at centos.org
Thu Aug 27 17:47:59 UTC 2009

Sergio Belkin wrote:
> 2009/8/27 Filipe Brandenburger <filbranden at gmail.com>:
>> Hi,
>> On Thu, Aug 27, 2009 at 12:46, Sergio Belkin<sebelk at gmail.com> wrote:
>>> Jim, thanks for the suggestion, but Firstly: I need a newer kernel in
>>> order to get IO statistics from tools like atop, pidstat, etc. And
>>> secondly and most important: my boss wants that :)
>> Then CentOS is not what you want.
>> There is a reason why RHEL/CentOS does not ship with the latest kernel
>> (and other components) and backports fixes instead. It's not trivial
>> to make different versions of these components work together. If you
>> try to replace the kernel (or other core components) you will see how
>> painful it is. In fact, you started to see it already. You may try to
>> continue to go that way, but I doubt anyone in this list will be able
>> to help you there... you're pretty much on your own.
>>> So I'd be glad to hear other kind of solution :)
>> Look at the latest Fedora or Ubuntu or another one of the "cutting
>> edge" distributions that ship with more recent versions of components.
>> Or ask yourself (or your boss) *WHY* you think you really need a later
>> version of a certain component. What is your real problem? Is it
>> support to a certain hardware? Is it network related? Is it
>> (unfounded) fear that the kernel in CentOS might be vulnerable? It
>> might be possible to solve your problem using CentOS in another way,
>> if you come back to the list with the real problem we might be able to
>> help you better.
>> HTH,
>> Felipe
> I've just explained the reason why I've compiled.
Let me try it a different way.

The current kernel used by Red Hat in RHEL 4 is a 2.6.9-x kernel and it
has 1973 patches.  The one currently in use in RHEL 5 is a 2.6.18-x
kernel with 2882 patches.

Many packages are compiled against kernel-headers and depend on the proc
  structure that is there.

SELinux is just one of many issues you will have if you try to use a
main line kernel on CentOS.  You will need to have several of the Red
Hat patches (modified to work with the new kernel tree) incorporated in
order to use a newer kernel on CentOS.

If you absolutely have to have a newer kernel (you should not do this
... but hey, it IS your machine) ... then instead of trying to use a
main line kernel, instead try to use the latest one from here:


This kernel has been tested for use with RHEL-5 and is 2.6.24-x.

You still might have issues, but they should be far fewer than running a
main line kernel on CentOS.

Would you, if you boss told you he wanted you to, try to make the
Windows Vista system files run on Windows 95?

Johnny Hughes

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 251 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20090827/11c0d38b/attachment.sig>

More information about the CentOS mailing list