Releases: pulp/pulpcore-selinux
1.2.4
- Allow systemd Type=notify
- Label /var/run/pulpcore-(api|content).sock as server
1.2.3
- Allow pulpcore to manage symlinks in /var/lib/pulp
1.2.2
Changes since 1.2.0:
- Label /var/lib/pulp/pulpcore_static properly as httpd_sys_content_t
- Add a release guide, RELEASING.md
1.2.0
Multiple updates to use new communication methods
- Set the correct SELinux type also for runtime socket files as so far
the file transitions in the runtime directory were defined for plain
files and directories only. - Allow pulpcore and pulpcore-server read all proc types.
- Allow pulpcore and pulpcore-server connect to redis
over a unix domain stream socket. - Allow pulpcore and pulpcore-server connect to postgresql
over a unix domain stream socket. - Allow httpd connect to pulpcore-server over a unix domain stream socket.
- Allow init named content file transition.
- Add the pulpcore_server_stream_connect() interface.
- Add the redis_stream_connect() interface to override existing interface in RHEL.
- Set pulpcore_server_var_run_t as the default type for /var/run/pulpcore-api/*.
- The resource-manager and resource-worker directories have been renamed
to begin with "pulpcore-".
1.1.4
- Label /var/lib/pulp/media as pulpcore_var_lib_t
- Drop old gunicorn and rq paths, /usr/bin/{rq,gunicorn}
The testing notes from 1.1.0 still apply:
This has been tested against pulpcore 3.5.0 with:
pulp-ansible:
version: "0.2.0b15"
pulp-certguard:
version: "1.0.1"
pulp-container:
version: "2.0.0b3"
pulp-rpm:
version: "3.4.2"
pulp-file:
version: "1.1.0"
Also tested against pulpcore 3.6 and 3.7 (but not all the plugins installed, and installed at newer versions.)
1.1.3
- Fix module versions still showing up as 1.1.1 on EL7, and possibly breaking updates on EL7.
The testing notes from 1.1.0 still apply:
This has been tested against pulpcore 3.5.0 with:
pulp-ansible:
version: "0.2.0b15"
pulp-certguard:
version: "1.0.1"
pulp-container:
version: "2.0.0b3"
pulp-rpm:
version: "3.4.2"
pulp-file:
version: "1.1.0"
Also tested against pulpcore 3.6 and 3.7 (but not all the plugins installed, and installed at newer versions.)
1.1.2
- Fix labelling of the gunicorn SELinux wrapper path (
/usr/libexec/pulpcore/gunicorn) - Remove no longer used
/usr/lib/pulp/bin/{rq,gunicorn}paths - Add GitHub Actions CI verification that the policy builds
The testing notes from 1.1.0 still apply:
This has been tested against pulpcore 3.5.0 with:
pulp-ansible:
version: "0.2.0b15"
pulp-certguard:
version: "1.0.1"
pulp-container:
version: "2.0.0b3"
pulp-rpm:
version: "3.4.2"
pulp-file:
version: "1.1.0"
Also tested against pulpcore 3.6 and 3.7 (but not all the plugins installed, and installed at newer versions.)
1.1.1
- Removed no-longer used Makefile. (README.md build instructions are unchanged.)
- Fix module versions still showing up as 1.0 on EL7, and possibly breaking upgrades on EL7. (Module versions are now 1.1.1, same as the git tag/release.)
The testing notes from 1.1.0 still apply:
This has been tested against pulpcore 3.5.0 with:
pulp-ansible:
version: "0.2.0b15"
pulp-certguard:
version: "1.0.1"
pulp-container:
version: "2.0.0b3"
pulp-rpm:
version: "3.4.2"
pulp-file:
version: "1.1.0"
Also tested against pulpcore 3.6 and 3.7 (but not all the plugins installed, and installed at newer versions.)
1.1.0
- Added support for CentOS 8 / RHEL 8
- Added support for Ansible content plugin
- Separated the types for client and server domains, together with separate private types for /run, /tmp, /var/lib.
- Added support for multiple paths for the same executable.
- Updated list of file/folderpaths, including files/folders under /etc/pulp
This has been tested against pulpcore 3.5.0 with:
pulp-ansible:
version: "0.2.0b15"
pulp-certguard:
version: "1.0.1"
pulp-container:
version: "2.0.0b3"
pulp-rpm:
version: "3.4.2"
pulp-file:
version: "1.1.0"
Also tested against pulpcore 3.6 and 3.7 (but not all the plugins installed, and installed at newer versions.)
