Bug 744873 – image generation broken

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 744873 - image generation broken


Summary:	image generation broken


Status:	RESOLVED FIXED

Product:	gnome-continuous
Classification:	Other
Component:	general
Version:	unspecified
Hardware:	Other Linux

Importance:	Normal normal
Target Milestone:	---
Assigned To:	GNOME Continuous maintainer(s)
QA Contact:	GNOME Continuous maintainer(s)

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2015-02-20 22:12 UTC by Colin Walters
Modified:	2015-03-05 20:21 UTC

See Also:
GNOME target:	---
GNOME version:	---

Description Colin Walters 2015-02-20 22:12:57 UTC

I think that we need to split the "temporary work" like qcow2 disks accessed via libguestfs into a distinct directory from "public static files".

That way we can have everything in "public static files" be httpd_user_content_t.

Comment 1 Andrea Veri 2015-02-25 07:50:13 UTC

This is what I have in terms of AVCs after yesterday's reboot:

#============= httpd_t ==============

#!!!! This avc can be allowed using the boolean 'httpd_use_fusefs'
allow httpd_t fusefs_t:dir getattr;
allow httpd_t var_t:file getattr;
allow httpd_t virt_home_t:sock_file getattr;

Comment 2 Colin Walters 2015-02-27 01:26:31 UTC

Hopefully https://git.gnome.org/browse/gnome-continuous/commit/?id=00c524ada7890bad0b48f7f4b0ca97450458502b will help with this.

Comment 3 Colin Walters 2015-03-05 20:21:37 UTC

This works now.