Bug 1052971

Summary: Allow virt_use_fusefs
Product: Red Hat OpenStack Reporter: Dafna Ron <dron>
Component: openstack-selinuxAssignee: Ryan Hallisey <rhallise>
Status: CLOSED ERRATA QA Contact: Dafna Ron <dron>
Severity: high Docs Contact:
Priority: high    
Version: 4.0CC: aortega, brad, breeler, derekh, eharney, gfidente, jguiditt, lhh, mgrepl, mmagr, morazi, rhos-maint, yeylon, yrabl
Target Milestone: rcKeywords: Reopened, ZStream
Target Release: 5.0 (RHEL 7)   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: openstack-selinux-0.5.0-2.el7ost Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 1015625 Environment:
Last Closed: 2014-07-08 15:12:45 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 1 Martin Magr 2014-01-14 14:21:28 UTC 
All selinux related fixes should be in openstack-selinux package IMHO ... and not in packstack / foreman.
Comment 2 Martin Magr 2014-01-14 14:24:47 UTC 
And reading "Additional comment from Jason Guiditta on 2013-12-09 11:31:50 EST" it seems that this fix is already in openstack-selinux, hence closing.
Comment 3 Dafna Ron 2014-01-14 14:38:15 UTC 
no it's not. 
we tested it today: 
[root@nott-vdsa ~]# getsebool -a |grep fuse
ftpd_use_fusefs --> off
httpd_use_fusefs --> off
samba_share_fusefs --> off
sanlock_use_fusefs --> off
use_fusefs_home_dirs --> off
virt_use_fusefs --> off

reopening
Comment 6 Martin Magr 2014-01-16 17:01:19 UTC 
According to Giulio's patch virt_use_fusefs should be set on. Could you please add this to openstack-selinux package? Thanks in advance
Comment 9 Yogev Rabl 2014-06-26 14:09:55 UTC 
verified in:

openstack-packstack-2014.1.1-0.27.dev1184.el7ost.noarch
openstack-packstack-puppet-2014.1.1-0.27.dev1184.el7ost.noarch
Comment 11 errata-xmlrpc 2014-07-08 15:12:45 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHEA-2014-0845.html