Actions
Bug #37497
closed
Boot disk based Provisioning fails to generate ISO image for instance client.example.com: ERF42-8093 [Foreman::Exception]: ISO build failed
Difficulty:
Triaged:
Yes
Description
2024-05-05T08:06:48 [W|app|2e9a69b1] Failed to generate ISO image for instance dora-rydolph.example.com: ERF42-8093 [Foreman::Exception]: ISO build failed 2024-05-05T08:06:48 [I|app|2e9a69b1] Backtrace for 'Failed to generate ISO image for instance client.example.com: ERF42-8093 [Foreman::Exception]: ISO build failed' error (Foreman::Exception): ERF42-8093 [Foreman::Exception]: ISO build failed 2e9a69b1 | /usr/share/gems/gems/foreman_bootdisk-21.2.3/app/services/foreman_bootdisk/iso_generator.rb:160:in `generate' 2e9a69b1 | /usr/share/gems/gems/foreman_bootdisk-21.2.3/app/services/foreman_bootdisk/iso_generator.rb:30:in `generate_full_host' 2e9a69b1 | /usr/share/gems/gems/foreman_bootdisk-21.2.3/app/models/concerns/foreman_bootdisk/orchestration/compute.rb:47:in `bootdisk_generate_iso_image' 2e9a69b1 | /usr/share/gems/gems/foreman_bootdisk-21.2.3/app/models/concerns/foreman_bootdisk/orchestration/compute.rb:71:in `setGenerateIsoImage'
time->Thu May 23 06:34:44 2024
type=PROCTITLE msg=audit(1716446084.450:665): proctitle=67656E69736F696D616765002D6F002F7573722F73686172652F666F72656D616E2F746D702F626F6F746469736B2D69736F2D32303234303532332D363031352D7473756176372F6F75747075742E69736F002D69736F2D6C6576656C0032002D620069736F6C696E75782E62696E002D6300626F6F742E636174002D6E6F2D
type=SYSCALL msg=audit(1716446084.450:665): arch=c000003e syscall=257 success=no exit=-13 a0=ffffff9c a1=7ff1322d32e9 a2=0 a3=0 items=0 ppid=6015 pid=6112 auid=4294967295 uid=990 gid=990 euid=990 suid=990 fsuid=990 egid=990 sgid=990 fsgid=990 tty=(none) ses=4294967295 comm="genisoimage" exe="/usr/bin/xorriso" subj=system_u:system_r:foreman_rails_t:s0 key=(null)
type=AVC msg=audit(1716446084.450:665): avc: denied { search } for pid=6112 comm="genisoimage" name="dev" dev="proc" ino=44218 scontext=system_u:system_r:foreman_rails_t:s0 tcontext=system_u:object_r:sysctl_dev_t:s0 tclass=dir permissive=0
----
time->Thu May 23 06:34:44 2024
type=PROCTITLE msg=audit(1716446084.450:666): proctitle=67656E69736F696D616765002D6F002F7573722F73686172652F666F72656D616E2F746D702F626F6F746469736B2D69736F2D32303234303532332D363031352D7473756176372F6F75747075742E69736F002D69736F2D6C6576656C0032002D620069736F6C696E75782E62696E002D6300626F6F742E636174002D6E6F2D
type=SYSCALL msg=audit(1716446084.450:666): arch=c000003e syscall=137 success=no exit=-13 a0=5638f40b8530 a1=7fff56d9a6c0 a2=7fff56d9a7e0 a3=0 items=0 ppid=6015 pid=6112 auid=4294967295 uid=990 gid=990 euid=990 suid=990 fsuid=990 egid=990 sgid=990 fsgid=990 tty=(none) ses=4294967295 comm="genisoimage" exe="/usr/bin/xorriso" subj=system_u:system_r:foreman_rails_t:s0 key=(null)
type=AVC msg=audit(1716446084.450:666): avc: denied { getattr } for pid=6112 comm="genisoimage" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:foreman_rails_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=0
please note, the first AVC is irrelevant to the issue, ISO can be generated while it occurs, while the second is important.
Updated by The Foreman Bot 6 months ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman-selinux/pull/166 added
Updated by Evgeni Golov 5 months ago
- Status changed from Ready For Testing to Closed
Applied in changeset 0bfceca110e4503fd82d4fbbd1f6a617938b8fa9.
Updated by Ewoud Kohl van Wijngaarden 2 months ago
- Subject changed from Boot disk based Provisioning fails to generate ISO image for instance clietn.example.com: ERF42-8093 [Foreman::Exception]: ISO build failed to Boot disk based Provisioning fails to generate ISO image for instance client.example.com: ERF42-8093 [Foreman::Exception]: ISO build failed
- Triaged changed from No to Yes
Actions