Investigate including policycoreutils as a runtime dependency in order to be able to use semanage (!1850) · Merge requests · GitLab.org / omnibus-gitlab · GitLab

Snippets Groups Projects

Do not update/delete: Banner broadcast message test data

Do not update/delete: Notification broadcast message test data

The source project of this merge request has been removed.

Closed username-removed-1506167 requested to merge (removed):1485-Fix-policycoreutils-python-and-semanage into master 7 years ago

Closes #1485 (closed).

This change replaces chcon with semanage in the gitlab-shell recipe, which makes the fcontext change permanent and brings the setup more in line with current SELinux best practices. As a result, the security context shouldn't get messed up anymore.

The documentation and test descriptions have been updated to reflect the change.

This change requires policycoreutils-python as a runtime dependency. The sort of counterintuitively-named restorecon -R -v is necessary to apply the new ssh_home_t context.

The dependencies required are in the base repos for all supported RHEL flavors.

Activity

username-removed-1506167 closed 7 years ago

closed
DJ Mountney @twk3 · 7 years ago

Contributor

@baroncharlus are you still interested in contributing this change?

I have started testing it on our different platforms, starting with centos6.
username-removed-1506167 @baroncharlus · 7 years ago

Author Contributor

@twk3 Definitely! Sorry for deleting the original fork and branch. Do you need me to open a new MR? I certainly can.
DJ Mountney @twk3 · 7 years ago

Contributor

@baroncharlus sure, thanks

Please register or sign in to reply