Description of problem: SELinux AVC error message emitted when installing SAM 1.3 + Splice packages. Version-Release number of selected component (if applicable): SAM 1.3 snapshot #6 + Splice How reproducible: 2 of 2 attempts Steps to Reproduce: 1. # yum install -y katello-headpin-all splice spacewalk-splice-tool ruby193-rubygem-splice_reports 2. Check /var/log/audit/audit.log Actual results: time->Mon Sep 16 05:14:28 2013 type=SYSCALL msg=audit(1379322868.261:94): arch=c000003e syscall=2 success=no exit=-13 a0=7f6a17d529c0 a1=0 a2=1b6 a3=0 items=0 ppid=24487 pid=24489 auid=4294967295 uid=48 gid=497 euid=48 suid=48 fsuid=48 egid=497 sgid=497 fsgid=497 tty=(none) ses=4294967295 comm="httpd" exe="/usr/sbin/httpd" subj=unconfined_u:system_r:httpd_t:s0 key=(null) type=AVC msg=audit(1379322868.261:94): avc: denied { read } for pid=24489 comm="httpd" name="webservices.wsgi" dev=dm-0 ino=1833277 scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=file Expected results: No AVCs should be caused Additional info: # find / -inum 1833277 /srv/splice/webservices.wsgi # ls -Z /srv/splice/webservices.wsgi -rw-r--r--. apache apache system_u:object_r:httpd_sys_content_t:s0 /srv/splice/webservices.wsgi # restorecon -vR /srv/splice/webservices.wsgi # echo $? 0
The release of Satellite 5.8 we are deprecating the support of Subscription Asset Manager. The release notes for 5.8 can be found at https://access.redhat.com/documentation/en-us/red_hat_satellite/5.8/pdf/release_notes/Red_Hat_Satellite-5.8-Release_Notes-en-US.pdf. I am therefore closing out this bug as WONTFIX. If you believe this to be an error, please feel free tor each out to either Rich Jerrido or Bryan Kearney. Thank you!