Bug 1315686
Summary: | pulp_streamer service fails to start with [Errno 13] Permission denied | ||
---|---|---|---|
Product: | Red Hat Satellite | Reporter: | Lukas Pramuk <lpramuk> |
Component: | Pulp | Assignee: | satellite6-bugs <satellite6-bugs> |
Status: | CLOSED ERRATA | QA Contact: | Sachin Ghai <sghai> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.2.0 | CC: | bbuckingham, bmbouter, cwelton, daviddavis, dkliban, ehelms, ggainey, ipanova, lpramuk, mhrivnak, pcreech, rchan, sghai, ttereshc |
Target Milestone: | Unspecified | Keywords: | Triaged |
Target Release: | Unused | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2016-07-27 09:26:22 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Lukas Pramuk
2016-03-08 12:19:42 UTC
More convenient report: # sudo audit2allow -a #============= streamer_t ============== allow streamer_t locale_t:dir { read search open getattr }; allow streamer_t locale_t:file { read getattr open }; #!!!! The source type 'streamer_t' can write to a 'dir' of the following types: # mnt_t, root_t, cluster_conf_t, cluster_var_lib_t, cluster_var_run_t allow streamer_t pulp_var_run_t:dir { write remove_name search add_name }; #!!!! The source type 'streamer_t' can write to a 'file' of the following types: # mnt_t, root_t, cluster_conf_t, cluster_var_lib_t, cluster_var_run_t allow streamer_t pulp_var_run_t:file { write create unlink open getattr }; The Pulp upstream bug status is at NEW. Updating the external tracker on this bug. The Pulp upstream bug priority is at Normal. Updating the external tracker on this bug. As rbarlow suggested, I highly suspect this is a duplicate of https://pulp.plan.io/issues/1711. Have you tried with our most recent beta (0.8 I think)? Please try it since the upstream bug will very likely be closed on Friday at triage as a duplicate. I agree that issue #1756 is a duplicate of #1711. Tested upstream pulp-selinux-2.8.0-0.8.beta.el6.noarch.rpm without any selinux denials. The Pulp upstream bug status is at ON_QA. Updating the external tracker on this bug. The Pulp upstream bug priority is at Normal. Updating the external tracker on this bug. Moving to POST, since fix is available upstream. The Pulp upstream bug status is at CLOSED - CURRENTRELEASE. Updating the external tracker on this bug. Verified sat6.2 beta snap6. The reported issue is no longer reproducible on rhel6. [root@cloud-qe]# service pulp_streamer status pulp_streamer (pid 15932) is running. [root@cloud-qe]# service pulp_streamer stop Stopping pulp_streamer... OK [root@cloud-qe]# service pulp_streamer start Starting pulp_streamer... /usr/lib/python2.6/site-packages/pulp/server/db/connection.py:159: DeprecationWarning: add_son_manipulator is deprecated _DATABASE.add_son_manipulator(NamespaceInjector()) /usr/lib/python2.6/site-packages/pulp/server/db/model/base.py:96: DeprecationWarning: ensure_index is deprecated. Use create_index instead. unique=unique, background=True) OK [root@cloud-qe]# echo $? 0 [root@cloud-qe]# getenforce Enforcing [root@cloud-qe]# cat /etc/redhat-release Red Hat Enterprise Linux Server release 6.7 (Santiago) I don't see SELinux avc denials related to this. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2016:1501 |