Bug 1286239
Summary: | OpenVPN can't connect | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Vít Ondruch <vondruch> |
Component: | NetworkManager-openvpn | Assignee: | Lubomir Rintel <lkundrak> |
Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | rawhide | CC: | choeger, dcbw, huzaifas, jklimes, lkundrak, psimerda, steve, thaller |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2015-12-01 10:46:33 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Vít Ondruch
2015-11-27 14:58:54 UTC
Let's see if it is SELinux related. Can you try again and see if there are some AVC? $ sudo ausearch -m avc -ts recent Does it work with? $ sudo setenforce 0 It might be a problem with openvpn running as a non root user now. But let's first figure out whether it is SELinux issue. (In reply to Jirka Klimes from comment #1) > Let's see if it is SELinux related. Can you try again and see if there are > some AVC? > $ sudo ausearch -m avc -ts recent This is what I can find in my log: ---- time->Fri Nov 27 14:00:33 2015 type=PROCTITLE msg=audit(1448629233.469:567): proctitle=2F7573722F7362696E2F6F70656E76706E002D2D72656D6F7465006F76706E2D6272712E7265646861742E636F6D0034343300756470002D2D6E6F62696E64002D2D6465760074756E002D2D636 970686572004145532D3235362D434243002D2D617574682D6E6F6361636865002D2D746C732D72656D6F7465006F76706E2D type=SYSCALL msg=audit(1448629233.469:567): arch=c000003e syscall=21 success=no exit=-13 a0=55de5778acc1 a1=7 a2=7 a3=55de59889d00 items=0 ppid=2732 pid=2751 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="openvpn" exe="/usr/sbin/openvpn" subj=system_u:system_r:openvpn_t:s0 key=(null) type=AVC msg=audit(1448629233.469:567): avc: denied { read write } for pid=2751 comm="openvpn" name="/" dev="tmpfs" ino=9197 scontext=system_u:system_r:openvpn_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=0 ---- time->Fri Nov 27 14:00:45 2015 type=PROCTITLE msg=audit(1448629245.885:568): proctitle=2F7573722F7362696E2F6F70656E76706E002D2D72656D6F7465006F76706E2D6272712E7265646861742E636F6D0034343300756470002D2D6E6F62696E64002D2D6465760074756E002D2D636970686572004145532D3235362D434243002D2D617574682D6E6F6361636865002D2D746C732D72656D6F7465006F76706E2D type=SYSCALL msg=audit(1448629245.885:568): arch=c000003e syscall=21 success=no exit=-13 a0=55827d2f2cc1 a1=7 a2=7 a3=55827e711d00 items=0 ppid=2732 pid=2779 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="openvpn" exe="/usr/sbin/openvpn" subj=system_u:system_r:openvpn_t:s0 key=(null) type=AVC msg=audit(1448629245.885:568): avc: denied { read write } for pid=2779 comm="openvpn" name="/" dev="tmpfs" ino=9197 scontext=system_u:system_r:openvpn_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=0 ---- time->Fri Nov 27 14:01:35 2015 type=PROCTITLE msg=audit(1448629295.066:571): proctitle=2F7573722F7362696E2F6F70656E76706E002D2D72656D6F7465006F76706E2D6272712E7265646861742E636F6D0034343300756470002D2D6E6F62696E64002D2D6465760074756E002D2D636970686572004145532D3235362D434243002D2D617574682D6E6F6361636865002D2D746C732D72656D6F7465006F76706E2D type=SYSCALL msg=audit(1448629295.066:571): arch=c000003e syscall=21 success=no exit=-13 a0=55b3ac1d3cc1 a1=7 a2=7 a3=55b3acfe6d00 items=0 ppid=2732 pid=2887 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="openvpn" exe="/usr/sbin/openvpn" subj=system_u:system_r:openvpn_t:s0 key=(null) type=AVC msg=audit(1448629295.066:571): avc: denied { read write } for pid=2887 comm="openvpn" name="/" dev="tmpfs" ino=9197 scontext=system_u:system_r:openvpn_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=0 ---- time->Fri Nov 27 14:02:00 2015 type=PROCTITLE msg=audit(1448629320.714:572): proctitle=2F7573722F7362696E2F6F70656E76706E002D2D72656D6F7465006F76706E2D6272712E7265646861742E636F6D0034343300756470002D2D6E6F62696E64002D2D6465760074756E002D2D636970686572004145532D3235362D434243002D2D617574682D6E6F6361636865002D2D746C732D72656D6F7465006F76706E2D type=SYSCALL msg=audit(1448629320.714:572): arch=c000003e syscall=21 success=no exit=-13 a0=55b391e36cc1 a1=7 a2=7 a3=55b3925ecd00 items=0 ppid=2732 pid=2920 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="openvpn" exe="/usr/sbin/openvpn" subj=system_u:system_r:openvpn_t:s0 key=(null) type=AVC msg=audit(1448629320.714:572): avc: denied { read write } for pid=2920 comm="openvpn" name="/" dev="tmpfs" ino=9197 scontext=system_u:system_r:openvpn_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=0 *** This bug has been marked as a duplicate of bug 1286964 *** |