Actions
Issue #7780
closed
SELinux denials on symlinking when galaxy-importer is run
Status:
CLOSED - CURRENTRELEASE
Priority:
Normal
Assignee:
Category:
Installer - Moved to GitHub issues
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
No
Groomed:
No
Sprint Candidate:
No
Tags:
SELinux
Sprint:
Sprint 85
Quarter:
Description
Per zpytela:
When the pulpcore resource worker runs galaxy-importer, tar is executed to extract files from the specified archive. Symbolic links can be present in the tarball, so the process needs the manage permissions.
(galaxy-importer is called by the plugin galaxy_ng.)
Already fixed in pulpcore-selinux, thank you zpytela! https://github.com/pulp/pulpcore-selinux/pull/31
This issue will be marked as fixed once pulp_installer includes the new pulpcore-selinux .
Updated by mdepaulo@redhat.com almost 3 years ago
- Subject changed from SELinux errors on symlinking when galaxy-importer is run to SELinux denials on symlinking when galaxy-importer is run
Added by Mike DePaulo almost 3 years ago
Added by Mike DePaulo almost 3 years ago
Problem: SELinux denials on symlinking when galaxy-importer
is run (by galaxy_ng content plugin)
Solution: Update pulpcore-selinux to 1.2.3, which includes the fix.
fixes: #7780
Updated by pulpbot almost 3 years ago
- Status changed from NEW to POST
Updated by Anonymous almost 3 years ago
- Status changed from POST to MODIFIED
Applied in changeset ansible-pulp|afeefdb3269dee526d0420a6891485e36079a4e2.
Updated by dkliban@redhat.com over 2 years ago
- Status changed from MODIFIED to CLOSED - CURRENTRELEASE
Actions
.
Problem: SELinux denials on symlinking when galaxy-importer
is run (by galaxy_ng content plugin)
Solution: Update pulpcore-selinux to 1.2.3, which includes the fix.
fixes: #7780