+++ This bug was initially created as a clone of Bug #1123279 +++ Discovered by the OpenStack team. Description of problem: There's a problem with foreman-selinux. It won't uninstall cleanly: libsepol.context_from_record: type elasticsearch_port_t is not defined libsepol.context_from_record: could not create context structure (Invalid argument). libsepol.port_from_record: could not create port structure for range 9200:9300 (tcp) (Invalid argument). libsepol.sepol_port_modify: could not load port range 9200 - 9300 (tcp) (Invalid argument). libsemanage.dbase_policydb_modify: could not modify record value (Invalid argument). libsemanage.semanage_base_merge_components: could not merge local modifications into policy (Invalid argument). /usr/sbin/semodule: Failed! And it also leaves its SELinux modifications in the system; at least, that is: # semanage port -l | grep 9200 elasticsearch_port_t tcp 9200-9300 (When it's being installed, it does /usr/sbin/semanage -S $selinuxvariant -i - << _EOT2 port -a -t elasticsearch_port_t -p tcp 9200-9300 _EOT2). As a result, it cannot be installed again cleanly anymore: /usr/sbin/semanage: Port tcp/9200-9300 already defined warning: %post(foreman-selinux-1.6.0.3-1.el6sat.noarch) scriptlet failed, exit status 1
To fix this bug, apply both patches: https://github.com/theforeman/foreman-selinux/pull/24 https://github.com/theforeman/foreman-packaging/pull/290
This was not merged yet, RHOS backported it.
Moving to POST since upstream bug http://projects.theforeman.org/issues/6780 has been closed ------------- Lukas Zapletal To fix this bug, apply both patches: https://github.com/theforeman/foreman-selinux/pull/24 https://github.com/theforeman/foreman-packaging/pull/290 ------------- Anonymous Applied in changeset commit:ae6f1a694d6a13c32d9bdfecbbb95cd2d0bb20bd.
Verified in Satellite-6.0.4-RHEL-6-20140813.2
This was delivered with Satellite 6.0 which was released on 10 September 2014.