Bug 990024
| Summary: | SELinux prevents sourceRoute.sh access '/var/run/vdsm' | ||||||
|---|---|---|---|---|---|---|---|
| Product: | [Retired] oVirt | Reporter: | Mark Wu <wudxw> | ||||
| Component: | vdsm | Assignee: | Dan Kenigsberg <danken> | ||||
| Status: | CLOSED DUPLICATE | QA Contact: | Haim <hateya> | ||||
| Severity: | medium | Docs Contact: | |||||
| Priority: | unspecified | ||||||
| Version: | 3.3 | CC: | abaron, acathrow, bazulay, iheim, mgoldboi, yeylon | ||||
| Target Milestone: | --- | ||||||
| Target Release: | --- | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2013-07-30 09:31:48 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | 977856 | ||||||
| Bug Blocks: | |||||||
| Attachments: |
|
||||||
*** This bug has been marked as a duplicate of bug 977856 *** (In reply to Mark Wu from comment #1) > > *** This bug has been marked as a duplicate of bug 977856 *** Thanks anyway. We do need to require the newer selinux policy built due to bug 977856! |
Created attachment 780476 [details] sealert.log Description of problem: SourceRoute can't be added by dhclient script because of selinux. Related logs: /var/log/vdsm/supervdsm.log: MainProcess|Thread-16::DEBUG::2013-07-30 04:35:51,421::utils::505::root::(execCmd) SUCCESS: <err> = '/etc/dhcp/dhclient.d/sourceRoute.sh: line 6: /var/run/vdsm/sourceRoutes/1375173351: Permission denied\n'; <rc> = 0 /var/log/message: Jul 28 22:52:42 localhost setroubleshoot: SELinux is preventing /usr/bin/bash from search access on the directory vdsm. For complete SELinux messages. run sealert -l f278d81c-b264-4d42-92dc-b6c624f4f5c9 Version-Release number of selected component (if applicable): Host: fedora19 selinux-policy-3.12.1-54.fc19 How reproducible: 100% Steps to Reproduce: 1. configure a network with bootproto=dhcp. Actual results: Expected results: Additional info: