1879849 – Permission denied errors in octavia's driver-agent.log when selinux in enforcing mode

Bug 1879849 - Permission denied errors in octavia's driver-agent.log when selinux in enforcing mode

Summary: Permission denied errors in octavia's driver-agent.log when selinux in enforc...

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	openstack-octavia
Sub Component:
Version:	16.2 (Train)
Hardware:	x86_64
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	z2
Target Release:	16.2 (Train on RHEL 8.4)
Assignee:	Brent Eagles
QA Contact:	Bruna Bonguardo
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2020-09-17 07:23 UTC by Sandeep Yadav
Modified:	2022-05-10 14:29 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2022-05-10 14:29:27 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	OSP-6569	0	None	None	None	2021-12-13 13:40:31 UTC

Description Sandeep Yadav 2020-09-17 07:23:34 UTC

Description of problem:

Permission denied errors in octavia's driver-agent.log when selinux in enforcing mode.

~~~
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent [-] status_listener raised exception: [Errno 13] Permission denied. Restarting status_listener.: PermissionError: [Errno 13] Permission denied
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent Traceback (most recent call last):
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent   File "/usr/lib/python3.6/site-packages/octavia/cmd/driver_agent.py", line 65, in _process_wrapper
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent     function(exit_event)
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent   File "/usr/lib/python3.6/site-packages/octavia/api/drivers/driver_agent/driver_listener.py", line 118, in status_listener
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent     StatusRequestHandler)
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent   File "/usr/lib64/python3.6/socketserver.py", line 456, in __init__
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent     self.server_bind()
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent   File "/usr/lib64/python3.6/socketserver.py", line 470, in server_bind
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent     self.socket.bind(self.server_address)
2020-09-17 06:07:42.902 15 ERROR octavia.cmd.driver_agent PermissionError: [Errno 13] Permission denied
~~~

When we turn selinux in permissive mode it start working.


Version-Release number of selected component (if applicable):

16.2 


How reproducible:

Everytime


Steps to Reproduce:
1. Deploy tripleo-ci scenario10 with selinux in enforcing mode.


Actual results:

Permission denied errors in octavia's driver-agent.log:-

~~~
ERROR octavia.cmd.driver_agent PermissionError: [Errno 13] Permission denied
~~~

Expected results:

We should not see Permission denied issue even when selinux is in enforcing mode.


Additional info:

Note You need to log in before you can comment on or make changes to this bug.