749454 – RFE: running tests should know current root password

Bug 749454 - RFE: running tests should know current root password

Summary: RFE: running tests should know current root password

Keywords:
Status:	CLOSED INSUFFICIENT_DATA
Alias:	None
Product:	Beaker
Classification:	Retired
Component:	scheduler
Sub Component:
Version:	0.5
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified vote
Target Milestone:	---
Assignee:	Nick Coghlan
QA Contact:
Docs Contact:
URL:
Whiteboard:	MC
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2011-10-27 05:31 UTC by Karel Srot
Modified:	2012-11-07 07:23 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Doc Type:	Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed:	2012-11-07 07:23:18 UTC

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Karel Srot 2011-10-27 05:31:33 UTC

Description of problem:

Once the beaker infrastructure is changed and provisioned systems gets random root password, we will to know the root password in order to properly perform some RHTS tests.
Probably the best solution for us is to have the root password available through some environment variable (or stored in a file readable by root). 

There were some "workarounds"/solutions suggested on the beaker-devel list:

ssh keys - doesn't solve the problem with run_init command that needs the root password

changing root password in the test and restore it later - possible, but not the best solution for shared system - dedicated beaker system is not the only environment we use for test execution

password defined in kickstart - not possible for shared or already provisioned systems


Global variable with the root password requires minimal or none changes in current tests. I also believe that providing the root password to the running test is not a security issue for beaker systems (since the test itself is able to change it)

Comment 1 Bill Peck 2011-10-27 13:18:05 UTC

(In reply to comment #0)
> Description of problem:
> 
> Once the beaker infrastructure is changed and provisioned systems gets random
> root password, we will to know the root password in order to properly perform
> some RHTS tests.
> Probably the best solution for us is to have the root password available
> through some environment variable (or stored in a file readable by root). 
> 
> There were some "workarounds"/solutions suggested on the beaker-devel list:
> 
> ssh keys - doesn't solve the problem with run_init command that needs the root
> password
> 
> 

What is run_init?  and why will it not work with ssh_keys?

Thanks

Comment 2 Karel Srot 2011-10-31 06:34:18 UTC

run_init is a binary from policycoreutils package

DESCRIPTION
Run  a  init  script  under  the  proper context, which is specified in /etc/selinux/POLICY-TYPE/contexts/initrc_context.

This is necessary with MLS SELinux policy but we are testing it also with targeted policy.

> why will it not work with ssh_keys?

run_init prompts the user for the password. Please ask Dan Walsh regarding details.

Comment 3 Nick Coghlan 2012-10-17 04:36:28 UTC

Bulk reassignment of issues as Bill has moved to another team.

Comment 4 Min Shin 2012-11-07 07:23:18 UTC

This bugs is closed as it is either not in the current Beaker scope or we could not find sufficient data in the bug report for consideration.
Please feel free to reopen the bug with additional information and/or business cases behind it.

Note You need to log in before you can comment on or make changes to this bug.