Project

General

Profile

Actions
Copy link

Bug #15639

closed

OpenStack 8774 port is not associated on RHEL6

Added by Lukas Zapletal almost 9 years ago. Updated almost 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Lukas Zapletal
Category:
Compute resources
Target version:
1.11.4
Difficulty:
trivial
Triaged:
Bugzilla link:
Pull request:
https://github.com/theforeman/foreman-selinux/pull/58
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

On RHEL6 the port is not correctly associated in the enable script due to shell comparison typo:

[root@abc ~]# semanage port -l | grep 8774

Therefore provisioning fails:

type=AVC msg=audit(1467663634.790:77212): avc: denied { name_connect } for pid=7928 comm="diagnostic_con*" dest=8774 scontext=unconfined_u:system_r:passenger_t:s0 tcontext=system_u:object_r:port_t:s0 tclass=tcp_socket

This was discovered during QA of: https://bugzilla.redhat.com/show_bug.cgi?id=1318327

Related issues 1 (0 open1 closed)

Related to SELinux - Bug #10443: Foreman cannot connect to OpenStackClosedLukas Zapletal05/11/2015Actions
Actions
Copy link
 #1

Updated by The Foreman Bot almost 9 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman-selinux/pull/58 added
Actions
Copy link
 #2

Updated by Lukas Zapletal almost 9 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions
Copy link
 #3

Updated by Dominic Cleal almost 9 years ago

  • Related to Bug #10443: Foreman cannot connect to OpenStack added
Actions
Copy link
 #4

Updated by Dominic Cleal almost 9 years ago

  • Translation missing: en.field_release set to 169
Actions
Copy link

Also available in: Atom PDF