SELinux denials on symlinking when galaxy-importer is run
When the pulpcore resource worker runs galaxy-importer, tar is executed to extract files from the specified archive. Symbolic links can be present in the tarball, so the process needs the manage permissions.
(galaxy-importer is called by the plugin galaxy_ng.)
Already fixed in pulpcore-selinux, thank you zpytela! https://github.com/pulp/pulpcore-selinux/pull/31
This issue will be marked as fixed once pulp_installer includes the new pulpcore-selinux .
Problem: SELinux denials on symlinking when galaxy-importer
is run (by galaxy_ng content plugin)
Solution: Update pulpcore-selinux to 1.2.3, which includes the fix.
- Status changed from POST to MODIFIED
Applied in changeset ansible-pulp|afeefdb3269dee526d0420a6891485e36079a4e2.
Please register to edit this issue