Description of problem: SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t Version-Release number of selected component (if applicable): satellite-6.13.1-1 How reproducible: New installation of 6.13 Steps to Reproduce: • synchronize the RPM-package repositories • publish and promote the CVs and CCVs Actual results: SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t.#012#012***** Plugin catchall (100. confidence) suggests **************************#012#012If you believe that pulpcore-worker should be allowed read access on key labeled pulpcore_server_t by default.#012Then you should report this as a bug.#012You can generate a local policy module to allow this access.#012Do#012allow this access for now by executing:#012# ausearch -c 'pulpcore-worker' --raw | audit2allow -M my-pulpcoreworker#012# semodule -X 300 -i my-pulpcoreworker.pp#012 SELinux is preventing /usr/bin/python3.9 from view access on the key labeled pulpcore_server_t.#012#012***** Plugin catchall (100. confidence) suggests **************************#012#012If you believe that python3.9 should be allowed view access on key labeled pulpcore_server_t by default.#012Then you should report this as a bug.#012You can generate a local policy module to allow this access.#012Do#012allow this access for now by executing:#012# ausearch -c 'pulpcore-worker' --raw | audit2allow -M my-pulpcoreworker#012# semodule -X 300 -i my-pulpcoreworker.pp#012 Expected results: Proper Functioning of Satellite 6 Components with SELinux Context Additional info: - SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t. - SELinux is preventing /usr/bin/python3.9 from view access on the key labeled pulpcore_server_t.
I released 1.3.3 with the fix: https://github.com/pulp/pulpcore-selinux/releases/tag/1.3.3
*** Bug 2151664 has been marked as a duplicate of this bug. ***