Bug 691883

Summary: Error: CRITICAL Failed to remove SELinux rule for port 7390 when uninstalling server
Product: Red Hat Enterprise Linux 6 Reporter: Namita Soman <nsoman>
Component: ipaAssignee: Rob Crittenden <rcritten>
Status: CLOSED ERRATA QA Contact: Chandrasekar Kannan <ckannan>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 6.1CC: benl, dpal, jgalipea, shaines
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ipa-2.0.0-19.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-05-19 13:44:48 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Namita Soman 2011-03-29 19:11:30 UTC 
Description of problem:
Uninstall IPA server using command:
ipa-server-install --uninstall -d

root        : DEBUG    stdout=
root        : DEBUG    stderr=
root        : DEBUG    args=/usr/sbin/semanage port -d -t ldap_port_t -p tcp 7390
root        : DEBUG    stdout=
root        : DEBUG    stderr=/usr/sbin/semanage: Port tcp/7390 is defined in policy, cannot be deleted

root        : CRITICAL Failed to remove SELinux rule for port 7390


After uninstall, ran command:
semanage port -l | grep 7390
dogtag_port_t                  tcp      7390

And came across bug, possibly related, causing the issue (?)
https://bugzilla.redhat.com/show_bug.cgi?id=684269

Version-Release number of selected component (if applicable):
ipa-server-2.0.0-17.el6.x86_64

How reproducible:
always

Steps to Reproduce:
1.ipa-server-install --uninstall
2.
3.
  
Actual results:
Error thrown when uninstalling

Expected results:
To uninstall the SELinux rule

Additional info:
Comment 2 Dmitri Pal 2011-03-30 15:38:03 UTC 
https://fedorahosted.org/freeipa/ticket/1143
Comment 3 Rob Crittenden 2011-03-30 22:15:19 UTC 
Updated repl_selinux patch to remove the semanage invocations.

This is handled by selinux-policy now, fixed in selinux-policy-3.7.19-80.el6.
Comment 5 Namita Soman 2011-04-06 11:41:52 UTC 
verified fix in
ipa-server-2.0.0-19.el6.x86_64

the message didn't show up when running - ipa-server-install --uninstall
Comment 6 errata-xmlrpc 2011-05-19 13:44:48 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHEA-2011-0631.html