Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: use custom copy function to ignore extended attributes #343

Merged
merged 2 commits into from
Feb 15, 2024
Merged

fix: use custom copy function to ignore extended attributes #343

merged 2 commits into from
Feb 15, 2024

Conversation

xoxys
Copy link
Member

@xoxys xoxys commented Feb 14, 2024

Credits to the author of paperless-ngx/paperless-ngx#3847 for this solution.

Background (ref):

[...] Files in the container root filesystem will have the MCS label set which will allow only this specific container to access these files. The container process itself will have the same MCS label as these files. Files in volumes on the other hand will not have this label as this would prevent file access in case a container is recreated in which case it will have a new category/MCS label which does not match the ones of the files. When a file is created in the container root filesystem outside of a mounted volume, it will get this MCS label assigned. [...] Looking at the documentation of shutil, it seems like there is no way to tell shutil what kind of "extended attributes" should be copied.

@xoxys xoxys merged commit 70a9514 into main Feb 15, 2024
5 checks passed
@delete-merged-branch delete-merged-branch bot deleted the fix-selinux branch February 15, 2024 11:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@xoxys