Description of problem: ----------------------- The selinux avc denial issue will be fixed by introducing new selinux boolean that needs to be turned on. Version-Release number of selected component (if applicable): -------------------------------------------------------------- ovirt-4.1.2 vdsm-api-4.19.15-1.el7ev.noarch vdsm-jsonrpc-4.19.15-1.el7ev.noarch vdsm-python-4.19.15-1.el7ev.noarch vdsm-yajsonrpc-4.19.15-1.el7ev.noarch vdsm-hook-vmfex-dev-4.19.15-1.el7ev.noarch vdsm-xmlrpc-4.19.15-1.el7ev.noarch vdsm-4.19.15-1.el7ev.x86_64 vdsm-cli-4.19.15-1.el7ev.noarch How reproducible: ----------------- Always Steps to Reproduce: ------------------- 1. Check for selinux boolean that is enabled for glusterd ( virt_use_glusterd ) Actual results: --------------- selinux boolean 'virt_use_glusterd' boolean is disabled Expected results: ----------------- selinux boolean - 'virt_use_glusterd' boolean should be enabled
Patch was reverted from vdsm https://gerrit.ovirt.org/#/c/81409/ since it caused constant failure in ovirt-system-tests. Please repost it after making sure it passes there http://jenkins.ovirt.org/job/ovirt-system-tests_manual/
Currently selinux boolean "virt_use_glusterd" is not available in selinux-policy. Waiting for "virt_use_glusterd" to available in selinux-policy.
This needs to go to 4.2 since we are not releasing any further oVirt 4.1 releases.
This bug has not been marked as blocker for oVirt 4.3.0. Since we are releasing it tomorrow, January 29th, this bug has been re-targeted to 4.3.1.
Ovirt-4.3.1 already released, so moving to ovirt-4.3.2
Closing this bug as enabling gfapi has a lower priority at the moment