Red Hat Bugzilla – Bug 1475378
SELinux policy blocks Cinder backend for Glance
Last modified: 2018-02-05 14:10:03 EST
Created attachment 1304822 [details]
audit.log in permissive mode
Description of problem:
SELinux policy needs additions to support the Cinder backend for Glance
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Configure Cinder backend for Glance
2. Attempt to upload an image from a file to Glance
Fails w/ HTTP 500
The Cinder backend for Glance uses os-brick and oslo.privsep to connect to volumes, which is different from other Glance backends.
A previous attempt to address this same case is here:
Note: it is not possible to test this out of the box on OSP12 today because some configuration changes in the Glance packages that have not yet landedg. (These were configured by hand on the test machine used to generate the audit log here.)
Does the verification of the glance-cinder backend effectively verify this one?
I'd think so
Yes, I agree.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.