Plugins » Katello

Due to bug in mongodb SELinux policy.

Filing just for the record.

[root@fseven ~]# ausearch -m avc
----
time->Mon Apr 27 09:07:47 2015
type=SYSCALL msg=audit(1430140067.927:247956): arch=c000003e syscall=49 success=no exit=-13 a0=9 a1=7fb3b9325a90 a2=6e a3=7fffea3505b0 items=0 ppid=30158 pid=30159 auid=4294967295 uid=184 gid=995 euid=184 suid=184 fsuid=184 egid=995 sgid=995 fsgid=995 tty=(none) ses=4294967295 comm="mongod" exe="/usr/bin/mongod" subj=system_u:system_r:mongod_t:s0 key=(null)
type=AVC msg=audit(1430140067.927:247956): avc:  denied  { create } for  pid=30159 comm="mongod" name="mongodb-27017.sock" scontext=system_u:system_r:mongod_t:s0 tcontext=system_u:object_r:mongod_var_run_t:s0 tclass=sock_file
----
time->Mon Apr 27 09:26:17 2015
type=SYSCALL msg=audit(1430141177.648:248407): arch=c000003e syscall=49 success=yes exit=0 a0=9 a1=7fc60ee25a90 a2=6e a3=7fff81496bb0 items=0 ppid=30544 pid=30545 auid=4294967295 uid=184 gid=995 euid=184 suid=184 fsuid=184 egid=995 sgid=995 fsgid=995 tty=(none) ses=4294967295 comm="mongod" exe="/usr/bin/mongod" subj=system_u:system_r:mongod_t:s0 key=(null)
type=AVC msg=audit(1430141177.648:248407): avc:  denied  { create } for  pid=30545 comm="mongod" name="mongodb-27017.sock" scontext=system_u:system_r:mongod_t:s0 tcontext=system_u:object_r:mongod_var_run_t:s0 tclass=sock_file
----
time->Mon Apr 27 09:26:17 2015
type=SYSCALL msg=audit(1430141177.648:248408): arch=c000003e syscall=90 success=yes exit=0 a0=7fc60d3b6b98 a1=1ff a2=7fc607ead7fc a3=7fff81496bb0 items=0 ppid=30544 pid=30545 auid=4294967295 uid=184 gid=995 euid=184 suid=184 fsuid=184 egid=995 sgid=995 fsgid=995 tty=(none) ses=4294967295 comm="mongod" exe="/usr/bin/mongod" subj=system_u:system_r:mongod_t:s0 key=(null)
type=AVC msg=audit(1430141177.648:248408): avc:  denied  { setattr } for  pid=30545 comm="mongod" name="mongodb-27017.sock" dev="tmpfs" ino=13369478 scontext=system_u:system_r:mongod_t:s0 tcontext=system_u:object_r:mongod_var_run_t:s0 tclass=sock_file