Bug 1463641
Summary: | [Ganesha] Ganesha service failed to start on new node added in existing ganeshacluster | ||
---|---|---|---|
Product: | [Community] GlusterFS | Reporter: | Kaleb KEITHLEY <kkeithle> |
Component: | common-ha | Assignee: | Kaleb KEITHLEY <kkeithle> |
Status: | CLOSED EOL | QA Contact: | |
Severity: | unspecified | Docs Contact: | |
Priority: | urgent | ||
Version: | 3.10 | CC: | amukherj, bugs, kkeithle, lvrabec, msaini, rhinduja, rhs-bugs, rtalur, skoduri, storage-qa-internal |
Target Milestone: | --- | Keywords: | Triaged |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | 1461098 | Environment: | |
Last Closed: | 2018-06-20 18:23:54 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1457558, 1461098, 1461186, 1465605 |
Comment 1
Kaleb KEITHLEY
2017-06-21 12:24:41 UTC
REVIEW: https://review.gluster.org/17597 (common-ha: enable and disable selinux ganesha_use_fusefs) posted (#1) for review on release-3.10 by Kaleb KEITHLEY (kkeithle) REVIEW: https://review.gluster.org/17597 (common-ha: enable and disable selinux ganesha_use_fusefs) posted (#2) for review on release-3.10 by Kaleb KEITHLEY (kkeithle) REVIEW: https://review.gluster.org/17597 (common-ha: enable and disable selinux ganesha_use_fusefs) posted (#3) for review on release-3.10 by Kaleb KEITHLEY (kkeithle) COMMIT: https://review.gluster.org/17597 committed in release-3.10 by Kaleb KEITHLEY (kkeithle) ------ commit 5ad6e1e07f5304deb022ebd54dbbdac6f9c651fb Author: Kaleb S. KEITHLEY <kkeithle> Date: Wed Jun 21 10:01:20 2017 -0400 common-ha: enable and disable selinux ganesha_use_fusefs Starting in Fedora 26 and RHEL 7.4 there are new targeted policies in selinux which include a tuneable to allow ganesha.nfsd to access the gluster (FUSE) shared_storage volume where ganesha maintains its state. N.B. rpm doesn't have a way to distinguish between RHEL 7.3 or 7.4 so it can't be enabled for RHEL at this time. /usr/sbin/semanage is in policycoreutils-python in RHEL (versus policycoreutils-python-utils in Fedora.) Once RHEL 7.4 GAs we may also wish to specify the version for RHEL 7 explicitly, i.e. Requires: selinux-policy >= 3.13.1-160. But beware, the corresponding version in Fedora 26 seems to be selinux-policy-3.13.1.258 or so. (Maybe earlier versions, but that's what's currently in the F26 beta. release-3.10 is the upstream master branch for glusterfs-ganesha. For release-3.11 and later storhaug needs a similar change, which is tracked by https://github.com/linux-ha-storage/storhaug/issues/11 Maybe at some point we would want to consider migrating the targeted policies for glusterfs (and nfs-ganesha) from selinux-policy to a glusterfs-selinux (and nfs-ganesha-selinux) subpackage? Change-Id: I04a5443edd00636cbded59a2baddfa98095bf7ac BUG: 1463641 Signed-off-by: Kaleb S. KEITHLEY <kkeithle> Reviewed-on: https://review.gluster.org/17597 Smoke: Gluster Build System <jenkins.org> Reviewed-by: Niels de Vos <ndevos> Reviewed-by: jiffin tony Thottan <jthottan> CentOS-regression: Gluster Build System <jenkins.org> This bug reported is against a version of Gluster that is no longer maintained (or has been EOL'd). See https://www.gluster.org/release-schedule/ for the versions currently maintained. As a result this bug is being closed. If the bug persists on a maintained version of gluster or against the mainline gluster repository, request that it be reopened and the Version field be marked appropriately. |