Bug 1446487
| Summary: | Error installation SpaceWalk on Centos 7 with spacewalk-selinux-2.3.2-1.el7.noarch.rpm | ||
|---|---|---|---|
| Product: | [Community] Spacewalk | Reporter: | Thierry Guyard <thierry.guyard> |
| Component: | Installation | Assignee: | Eric Herget <eherget> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Red Hat Satellite QA List <satqe-list> |
| Severity: | high | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 2.6 | CC: | eherget, pstudeni, thierry.guyard, tsuroerusu |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | osad-5.11.84-1 spacewalk-selinux-2.7.3-1 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2017-09-27 19:34:13 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 1484117 | ||
|
Description
Thierry Guyard
2017-04-28 08:16:57 UTC
The command `/usr/sbin/semodule -s ${selinuxvariant} -l` used to return a failure exit code, but that has now changed on RHEL and CentOS 7. thanks to mmraka for pointing out an alternate command `/usr/sbin/semanage module -l -S ${selinuxvariant}` that continues to return a failure status code.
Should the `semanage module ...` command be changed to always return success status code, mmraka also suggested an alternative check with `if [ $(/usr/sbin/semodule -s ${selinuxvariant} -l | wc -l) -gt 1 ]; then` ...
In addition to updating the spacewalk-selinux-enable script, the osa-dispatcher-selinux-enable script also needed the same fix. spacewalk.github: b495b84d322ee1942096d6e0fd7771637a3033b9 (In reply to Eric Herget from comment #3) > spacewalk.github: > b495b84d322ee1942096d6e0fd7771637a3033b9 Hi Eric. I am deploying Spacewalk for my company to manage a pile of CentOS 7 VMs, and I just ran into this SELinux error when installing the Spacewalk 2.6 packages. I tracked down your fix on Github, and ran the two fixed loops of semanage that had otherwise bombed during the installation. I was wondering whether that was a correct approach, and also whether updated packages for Spacewalk 2.6 might be released? (In reply to Troels Just from comment #4) > (In reply to Eric Herget from comment #3) > > spacewalk.github: > > b495b84d322ee1942096d6e0fd7771637a3033b9 > > Hi Eric. > I am deploying Spacewalk for my company to manage a pile of CentOS 7 VMs, > and I just ran into this SELinux error when installing the Spacewalk 2.6 > packages. > > I tracked down your fix on Github, and ran the two fixed loops of semanage > that had otherwise bombed during the installation. I was wondering whether > that was a correct approach, and also whether updated packages for Spacewalk > 2.6 might be released? Hi Troels, Yes, running the two loops of semanage should apply the necessary config. This fix is found in the nightly builds and will be included in the upcoming Spacewalk 2.7 release in the next few weeks. Spacewalk 2.7 has been released. https://github.com/spacewalkproject/spacewalk/wiki/ReleaseNotes27 |