Bug 1238202

Summary: [SELinux] glusterfs/extras: add a convenience script to label (selinux) gluster bricks
Product: [Red Hat Storage] Red Hat Gluster Storage Reporter: Prasanth <pprakash>
Component: coreAssignee: Vijay Bellur <vbellur>
Status: CLOSED CURRENTRELEASE QA Contact: storage-qa-internal <storage-qa-internal>
Severity: high Docs Contact:
Priority: unspecified    
Version: rhgs-3.1CC: amukherj, atumball, bfoster, mgrepl, mmalik, nlevinki, pprakash, rcyriac, rhs-bugs, storage-qa-internal, vbellur
Target Milestone: ---Keywords: ZStream
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 1047975 Environment:
Last Closed: 2018-01-29 17:46:39 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1047975    
Bug Blocks: 1235589    

Description Prasanth 2015-07-01 11:59:45 UTC 
+++ This bug was initially created as a clone of Bug #1047975 +++

SELinux has defined the new glusterd_brick_t label to support a server side policy of glusterfs. Use of this label should allow enablement of SELinux (e.g., enforcing mode) on glusterfs servers. Bug 1016138 covers the evolution of the server side selinux policy for glusterfs.

To avoid the confusion and overhead of manual labelling each time a brick is created, add a hook script that labels the brick directory automatically on volume creation. The hook script can be included by users/admins/packagers as necessary if selinux support is desired.

--- Additional comment from Anand Avati on 2014-01-02 14:26:45 EST ---

REVIEW: http://review.gluster.org/6630 (extras/hook-scripts: add post-create script to label bricks for selinux) posted (#1) for review on master by Brian Foster (bfoster)

--- Additional comment from Anand Avati on 2014-01-02 15:04:19 EST ---

REVIEW: http://review.gluster.org/6630 (extras/hook-scripts: add post-create script to label bricks for selinux) posted (#2) for review on master by Brian Foster (bfoster)

--- Additional comment from Anand Avati on 2014-01-03 09:39:58 EST ---

REVIEW: http://review.gluster.org/6630 (extras/hook-scripts: selinux brick file context management scripts) posted (#3) for review on master by Brian Foster (bfoster)

--- Additional comment from Anand Avati on 2014-01-03 11:04:16 EST ---

REVIEW: http://review.gluster.org/6630 (extras/hook-scripts: selinux brick file context management scripts) posted (#4) for review on master by Brian Foster (bfoster)
Comment 2 Amar Tumballi 2018-01-29 17:46:39 UTC 
The above patches have already made it into the currently shipped RHGS versions.