Actions
Issue #8055
openWhen SELinux is enabled, pulp_installer relabels all the files in /var/lib/pulp
Status:
NEW
Priority:
Normal
Assignee:
-
Category:
Installer - Moved to GitHub issues
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:
Description
The installer takes a long time to upgrade an existing system that's running with SELinux enabled because it always relabels /var/lib/pulp in the "Restore SELinux contexts on Pulp dirs that may exist" handler[0]. The list of the directories is here[1].
[0] https://github.com/pulp/pulp_installer/blob/3.9.0-1/roles/pulp_common/handlers/main.yml#L13-L21 [1] https://github.com/pulp/pulp_installer/blob/3.9.0-1/roles/pulp_common/defaults/main.yml#L63-L66
Related issues
Updated by mdepaulo@redhat.com almost 4 years ago
For #7575 , we may put the selnux policy within pulp_installer, or as a subrepo, to accomplish the tight integration.
This would enable doing what we did with Pulp 2: Having selective relabelling logic for certain version upgrades.
Updated by mdepaulo@redhat.com almost 4 years ago
- Related to Task #7575: pulp_installer's SELinux support should handle folder paths being changed added
Updated by mdepaulo@redhat.com almost 4 years ago
- Triaged changed from No to Yes
Actions