Bug 1278051
Summary: | All-In-One: sanlock: Cannot acquire host id | ||||||
---|---|---|---|---|---|---|---|
Product: | [oVirt] vdsm | Reporter: | Bo Lei <bobo_lei> | ||||
Component: | General | Assignee: | Fred Rolland <frolland> | ||||
Status: | CLOSED DUPLICATE | QA Contact: | Aharon Canan <acanan> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | high | ||||||
Version: | 4.17.9 | CC: | acanan, amureini, bobo_lei, bugs, nsoffer, tnisan, ylavi | ||||
Target Milestone: | ovirt-4.0.0-alpha | Flags: | amureini:
ovirt-4.0.0?
rule-engine: planning_ack? rule-engine: devel_ack? rule-engine: testing_ack? |
||||
Target Release: | --- | ||||||
Hardware: | x86_64 | ||||||
OS: | Linux | ||||||
Whiteboard: | storage | ||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2016-01-04 09:30:38 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | Storage | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Bo Lei
2015-11-04 15:44:05 UTC
*** Bug 1278050 has been marked as a duplicate of this bug. *** Please attach logs: /var/log/ovirt-engine/engine.log /var/log/vdsm/vdsm.log /var/log/sanlock.log /var/log/messages Created attachment 1090682 [details]
logs
added all the logs.
Nir, any news on that one? Logs are attached (In reply to Tal Nisan from comment #4) I can check this next week. Hi, From the messages log, we can see that SE Linux is preventing Sanlock access: Nov 4 22:20:49 localhost sanlock[16565]: 2015-11-04 22:20:49+0800 884 [17529]: open error -13 /rhev/data-center/mnt/_home_data/d65c4762-bd59-4ac7-ab49-4a05fa4d61dc/dom_md/ids ... Nov 4 22:20:49 localhost python: SELinux is preventing /usr/sbin/sanlock from 'read, write' accesses on the file ids. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that sanlock should be allowed read write access on the ids file by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep sanlock /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Bo hi, Can you retry with SElinux on permissive mode ? Also, can you please provide AVC log from SElinux ? - best way is with ausearch Thanks, Fred (In reply to Fred Rolland from comment #7) > Bo hi, > > Can you retry with SElinux on permissive mode ? > > Also, can you please provide AVC log from SElinux ? - best way is with > ausearch > > Thanks, > > Fred I will retry this week. Bo I have checked on 7.2 and it works fine also on Enforcing mode. Ovirt 3.6 should work with 7.2 *** This bug has been marked as a duplicate of bug 1305768 *** This issue is not present in ovirt 3.6, it was introduced in master later (future 4.0.0) |