510748 – rsync does not work in client mode when launched from an init script

Bug 510748 - rsync does not work in client mode when launched from an init script

Summary: rsync does not work in client mode when launched from an init script

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 5
Classification:	Red Hat
Component:	selinux-policy-targeted
Sub Component:
Version:	5.4
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Miroslav Grepl
QA Contact:	BaseOS QE
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2009-07-10 15:05 UTC by James Laska
Modified:	2013-09-02 06:37 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-03-30 07:50:24 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
audit.log (4.51 KB, text/plain) 2009-07-10 15:05 UTC, James Laska	no flags	Details
View All

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2010:0182	0	normal	SHIPPED_LIVE	selinux-policy bug fix update	2010-03-29 12:19:53 UTC

Description James Laska 2009-07-10 15:05:42 UTC

Created attachment 351272 [details]
audit.log

Description of problem:

While running autotest on a RHEL5.3, the server is unable to copy test log files from client systems using rsync over ssh.

Version-Release number of selected component (if applicable):

 * libselinux-1.33.4-5.1.el5
 * selinux-policy-targeted-2.4.6-203.el5
 * selinux-policy-2.4.6-203.el5
 * autotest-0.10.0-4.ep5.el5

How reproducible:

 * 100%

Steps to Reproduce:
1. Install setup and configure autotest for el5
2. Start the server scheduler daemon

# /etc/init.d/autotest start

3. Queue a job

# atest job create "rawhide-repoclosure" -B never -a never -f /usr/share/autotest/client/tests/repoclosure/control  -m some-client.example.com
  
4. Wait for job to complete ... 

Actual results:

* When job completes, notice that the job test results have not been copied back to server.  See the missing "repoclosure-*" directories below:

# ls /usr/share/autotest/results/50-autotest/some-client.example.com

control  control.srv  debug/  host_keyvals/  keyval  status.log  sysinfo/


Expected results:

Test logs should have been copied back to the server (see "repoclosure*" directories below):

# ls /usr/share/autotest/results/52-autotest/some-client.example.com

analysis/    debug/	    repoclosure.rawhide-i386/	 status
control      host_keyvals/  repoclosure.rawhide-ppc/	 status.log
control.srv  keyval	    repoclosure.rawhide-x86_64/  sysinfo/

Additional info:

 * According to dwalsh, there is a boolean called rsync_client in latest policy but it does not support ssh.

Comment 1 James Laska 2009-07-10 15:29:19 UTC

Clearing flags for now ... if this is desired in RHEL5.4, the exception? must be set.

Comment 2 Daniel Walsh 2009-08-21 21:47:09 UTC

Fixed in selinux-policy-2.4.6-256.el5

Comment 5 James Laska 2010-02-18 14:20:15 UTC

I've updated to selinux-policy-2.4.6-274.el5 and I'm no longer seeing the reported issue.

Thanks!

Comment 7 errata-xmlrpc 2010-03-30 07:50:24 UTC

An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2010-0182.html

Note You need to log in before you can comment on or make changes to this bug.