Bug 482926

looks like install-rhn-proxy.xml needs version bumped as well as checked for xml validation. i noticed many tags that did not have corresponding end tags or end tags stuck at random. did a merge conflict cause this?

Version is fixed in commit 334e0527de4b97d233fc5d79c74dea8140545701
Validity of XML is fixed in 11addda9a39c8f08abdfa40f2f3b831b3a6bdd79
Now the installer proceed but did not subscribe to proxy channel, but that I will fill as different bug.

select 5.3 to activate proxy 
- browser spins and then completes
- no status message is displayed

Assigning to Shannon since I know he is looking at this today. Shannon - QA would love this to be available for this Friday's ISO.

*** Bug 485079 has been marked as a duplicate of this bug. ***

install-rhn-proxy.xml was referencing an obsolete package. got past the spinning. 

was not able to go through a complete proxy install due to the dependency errors in the proxy channel for rhncfg, rhncfg-actions and rhncfg-client.

full proxy install depends on 485143

fails-qa
webui proy install fails with ssl generation error

Could not Generate SSL server cert. Error: 1

I got this to work by turning off selinux and modifying the rhn_web.conf file to force proxy channel subscription. 

these tests are on the 3/6 iso. going to let preethi test with the st patrick's day iso to see if this fixes the issue. 

if selinux is a problem then we will need to open a bug that blocks this one.

fails_qa
looks like its the selinux. works  with selinux disabled

Would you mind to attach you audit.log?

from audit. log


type=AVC msg=audit(1237825098.946:50): avc:  denied  { sys_resource } for 
pid=3791 comm="sudo" capability=24 scontext=system_u:system_r:httpd_t:s0
tcontext=system_u:system_r:httpd_t:s0 tclass=capability
type=SYSCALL msg=audit(1237825098.946:50): arch=40000003 syscall=75 success=no
exit=-1 a0=6 a1=bfc04bf0 a2=253ff4 a3=bfc04bf0 items=0 ppid=2756 pid=3791
auid=4294967295 uid=48 gid=48 euid=0 suid=0 fsuid=0 egid=48 sgid=48 fsgid=48
tty=(none) ses=4294967295 comm="sudo" exe="/usr/bin/sudo"
subj=system_u:system_r:httpd_t:s0 key=(null)
type=AVC msg=audit(1237825099.019:51): avc:  denied  { create } for  pid=3791
comm="sudo" scontext=system_u:system_r:httpd_t:s0
tcontext=system_u:system_r:httpd_t:s0 tclass=netlink_audit_socket
type=SYSCALL msg=audit(1237825099.019:51): arch=40000003 syscall=102 success=no
exit=-13 a0=1 a1=bfc04a90 a2=397ff4 a3=6db0a0 items=0 ppid=2756 pid=3791
auid=4294967295 uid=0 gid=48 euid=0 suid=0 fsuid=0 egid=48 sgid=48 fsgid=48
tty=(none) ses=4294967295 comm="sudo" exe="/usr/bin/sudo"
subj=system_u:system_r:httpd_t:s0 key=(null)

The selinux issue is traced in different BZ:
https://bugzilla.redhat.com/show_bug.cgi?id=491687
So this BZ should be verified id succeed without selinux enable. IMO.

we need to install the proxy anyway to test the selinux bug. i'll watch this bug and move to modified with the depending bug 491687 moves to modified. 

moving to assigned and i will take a AI for this.

verified 
Satellite-5.3.0-RHEL5-re20090327.0 
activated rhel4 proxy on rhel5 satellite from webui

Successful RHN Proxy installation. No issues, no ISEs, no avc denies.

Stage validated -> RELEASE_PENDING

Stage validated with Satellite-5.3.0-RHEL5-re20090820.1. I've installed RHN Proxy on RHEL 4 and RHEL 5 via WebUI installer, from Satellite which had the Proxy channels synced from the channel dumps.

Moving to RELEASE_PENDING.

An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHEA-2009-1433.html