Bug 2238371

Summary: SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t
Product: Red Hat Satellite Reporter: Odilon Sousa <osousa>
Component: PulpAssignee: satellite6-bugs <satellite6-bugs>
Status: CLOSED ERRATA QA Contact: Shweta Singh <shwsingh>
Severity: high Docs Contact:
Priority: unspecified    
Version: 6.13.0CC: egolov, jcastran, mdepaulo, osousa, rdulhani, rlavi, saydas, shwsingh
Target Milestone: 6.13.5Keywords: Triaged
Target Release: Unused   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: pulpcore-selinux-1.3.3 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 2218932 Environment:
Last Closed: 2023-10-19 13:13:17 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 2 Shweta Singh 2023-09-25 07:20:57 UTC 
Verified.

Version Tested: Satellite 6.13.5 Snap 1.0

Verification Steps:
1. Enable few repos on Satellite and sync the repos.
2. Create a CV and CCV, add the repos in it, publish and promote it.
3. Verify the SeLinux is enabled on Satellite by running command `sestatus` on it.
4. Install `setools-console` to use other SELinux commands on it.
5. Check pulpcore_server_t and pulpcore_t has read and view key permissions.

Result:
Both pulpcore_server_t and pulpcore_t has read and view class key permissions.
Comment 9 errata-xmlrpc 2023-10-19 13:13:17 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Important: Satellite 6.13.5 Async Security Update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2023:5931