ok, only a few months behind the curve but i took a look at prelinking and, given that it actually modifies ELF shared and dynamically linked libs, my first concern would be that, technically, wouldn't those libs now fail an RPM verification test? after all, if they're no longer identical to the installed files, doesn't that constitute a verification failure?
also, as i mentioned, according to the FHS (http://www.samba.org/~cyeoh), /usr should be mountable read-only. if prelinking is run on a regular basis, that would make that pretty difficult. *but*, if you're determined to mount /usr read-only, that suggests that you've done all your installation for the time being, you're happy with the current setup, and you don't plan on modifying the installed software in the immediate future.
if that's the case, wouldn't you just run prelink, then remount /usr as RO and turn off prelinking? after all, if nothing's going to change in the executables or libs, there's no point re-running prelink, is there? it has everything it needs, at least until the next time you need to mess with your software.
thoughts?
rday