Bug 688319 - new ovirt-node tool for doing 3rd party plugin injection
Summary: new ovirt-node tool for doing 3rd party plugin injection
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: ovirt-node
Version: 7.0
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: rc
: ---
Assignee: Fabian Deutsch
QA Contact: Virtualization Bugs
URL:
Whiteboard:
Depends On: 688324
Blocks: 514650 688325 688331 891344 1055798
TreeView+ depends on / blocked
 
Reported: 2011-03-16 19:43 UTC by Perry Myers
Modified: 2019-03-06 00:45 UTC (History)
8 users (show)

Fixed In Version: ovirt-node-3.0.0-6.1.el7
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-06-16 08:16:36 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Perry Myers 2011-03-16 19:43:24 UTC 
Description of problem:
A RHEVH plugin-pack would be a tarball containing a set of RPMs and a kickstart file.  This would be passed through to underlying edit-livecd -k option.

This way we can more tightly control how edit-livecd is used.  Using this tool (ovirt-install-plugin) we would be able to limit edit-livecd usage to be only RPM installation and blacklisting.

This tool would also need to support arbitrary policy plugins so that we could restrict things like:
* whether or not kernel modules can be installed?
* whether or not packages w/o a valid gpg signature can be installed
* what gpg signatures would be allowed to install
* what areas of the filesystem can be written to
* what files/configuration are ok to modify vs. off limits
Comment 3 Ludek Smid 2014-06-16 08:16:36 UTC 
This request was resolved in Red Hat Enterprise Linux 7.0.

Contact your manager or support representative in case you have further questions about the request.
Note You need to log in before you can comment on or make changes to this bug.