Bug 1461914 - Remove IPA SELinux module from Distribution policy
Remove IPA SELinux module from Distribution policy
Status: NEW
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: selinux-policy (Show other bugs)
7.5
All Linux
unspecified Severity unspecified
: rc
: ---
Assigned To: Lukas Vrabec
Milos Malik
:
Depends On:
Blocks: 1461919
  Show dependency treegraph
 
Reported: 2017-06-15 11:23 EDT by Lukas Vrabec
Modified: 2017-08-01 03:46 EDT (History)
7 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1461919 (view as bug list)
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Lukas Vrabec 2017-06-15 11:23:32 EDT
Description of problem:
IPA SELinux module can be shipped by IPA team by own (sub)package. For more info please see: 

Shipping a custom SELinux policy together with product bring several benefits:

    Changes  in a policy can be modified immediately, so the product package  maintainer does not need to wait until the distribution SELinux policy  is updated.

    Policy changes in product SELinux policy can  be released together with changes in product package so SELinux policy  will be always synchronized with a product.

    Product  package can follow different timeline deadlines then SELinux policy  package, this can cause issues and customer can get new product package  version without necessary changes in SELinux policy and this can block  some functionality of a product.


Actual results:
IPA SELinux module is part of selinux-policy package in RHEL.

Expected results:
IPA SELinux module will be part of IPA package.

Note You need to log in before you can comment on or make changes to this bug.