[Users] engine-setup fails to setup ports when SElinux is disabled
Dear oVirt-User-List, I tried to execute the engine-setup with Fedora 18 and oVirt 3.2, but at the question "HTTP Port [80]" I get the error message: "Error: failed adding port 80 to http_port_t because it is aready preallocated in selinux. Please choose a different port." If I read bug report 893562 correctly, this issue should already be fixed: https://bugzilla.redhat.com/show_bug.cgi?id=893562#c11 Am I alone with this problem? Best regards Dennis
Hi Dennis, the bug https://bugzilla.redhat.com/show_bug.cgi?id=893562 has a patch merged in the master tree, it's not included in oVirt 3.2. As a workaround, if you don't want selinux enforcing, enable selinux in permissive mode. Regards, -- Sandro Il 25/02/2013 17:40, Dennis Böck ha scritto:
Dear oVirt-User-List,
I tried to execute the engine-setup with Fedora 18 and oVirt 3.2, but at the question "HTTP Port [80]" I get the error message: "Error: failed adding port 80 to http_port_t because it is aready preallocated in selinux. Please choose a different port." If I read bug report 893562 correctly, this issue should already be fixed: https://bugzilla.redhat.com/show_bug.cgi?id=893562#c11 Am I alone with this problem?
Best regards Dennis _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
On 02/25/2013 06:50 PM, Sandro Bonazzola wrote:
Hi Dennis, the bug https://bugzilla.redhat.com/show_bug.cgi?id=893562 has a patch merged in the master tree, it's not included in oVirt 3.2. As a workaround, if you don't want selinux enforcing, enable selinux in permissive mode. Regards,
did we backport this to 3.2.1?
Hi Dennis, all On Fri, Mar 15, 2013 at 10:12 AM, Itamar Heim <iheim@redhat.com> wrote:
On 02/25/2013 06:50 PM, Sandro Bonazzola wrote:
Hi Dennis, the bug https://bugzilla.redhat.com/show_bug.cgi?id=893562 has a patch merged in the master tree, it's not included in oVirt 3.2. As a workaround, if you don't want selinux enforcing, enable selinux in permissive mode. Regards,
did we backport this to 3.2.1?
No, we didn't backport it to 3.2.1; but anyway the 'fix' is exactly the same as the workaround - to enable SELINUX at least in the permissive mode. The real problem lies in Fedora's security policies packages with breaks the functionality of the semanage utility. It is still not fixed in the Fedora repos, thus in our setup we just exit gracefully and ask to turn the selinux on.
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Alex.
participants (4)
-
Alex Lourie -
Dennis Böck -
Itamar Heim -
Sandro Bonazzola