Project

Profile

Help

Issue #8055

When SELinux is enabled, pulp_installer relabels all the files in /var/lib/pulp

Added by dkliban@redhat.com 8 months ago. Updated 8 months ago.

Status:
NEW
Priority:
Normal
Assignee:
-
Category:
Installer
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

The installer takes a long time to upgrade an existing system that's running with SELinux enabled because it always relabels /var/lib/pulp in the "Restore SELinux contexts on Pulp dirs that may exist" handler[0]. The list of the directories is here[1].

[0] https://github.com/pulp/pulp_installer/blob/3.9.0-1/roles/pulp_common/handlers/main.yml#L13-L21 [1] https://github.com/pulp/pulp_installer/blob/3.9.0-1/roles/pulp_common/defaults/main.yml#L63-L66


Related issues

Related to Pulp - Task #7575: pulp_installer's SELinux support should handle folder paths being changedNEW

<a title="Actions" class="icon-only icon-actions js-contextmenu" href="#">Actions</a>

History

#1 Updated by mdepaulo@redhat.com 8 months ago

For #7575 , we may put the selnux policy within pulp_installer, or as a subrepo, to accomplish the tight integration.

This would enable doing what we did with Pulp 2: Having selective relabelling logic for certain version upgrades.

#2 Updated by mdepaulo@redhat.com 8 months ago

  • Related to Task #7575: pulp_installer's SELinux support should handle folder paths being changed added

#3 Updated by mdepaulo@redhat.com 8 months ago

  • Triaged changed from No to Yes

Please register to edit this issue

Also available in: Atom PDF