Project

Profile

Help

Issue #8055

open

When SELinux is enabled, pulp_installer relabels all the files in /var/lib/pulp

Added by dkliban@redhat.com about 3 years ago. Updated about 3 years ago.

Status:
NEW
Priority:
Normal
Assignee:
-
Category:
Installer - Moved to GitHub issues
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

The installer takes a long time to upgrade an existing system that's running with SELinux enabled because it always relabels /var/lib/pulp in the "Restore SELinux contexts on Pulp dirs that may exist" handler[0]. The list of the directories is here[1].

[0] https://github.com/pulp/pulp_installer/blob/3.9.0-1/roles/pulp_common/handlers/main.yml#L13-L21 [1] https://github.com/pulp/pulp_installer/blob/3.9.0-1/roles/pulp_common/defaults/main.yml#L63-L66


Related issues

Related to Pulp - Task #7575: pulp_installer's SELinux support should handle folder paths being changedNEW

Actions
Actions #1

Updated by mdepaulo@redhat.com about 3 years ago

For #7575 , we may put the selnux policy within pulp_installer, or as a subrepo, to accomplish the tight integration.

This would enable doing what we did with Pulp 2: Having selective relabelling logic for certain version upgrades.

Actions #2

Updated by mdepaulo@redhat.com about 3 years ago

  • Related to Task #7575: pulp_installer's SELinux support should handle folder paths being changed added
Actions #3

Updated by mdepaulo@redhat.com about 3 years ago

  • Triaged changed from No to Yes

Also available in: Atom PDF