I am using an NFS share as my storage for the spacewalk repositories under
/var/satellite. I discovered today that I needed to do these:
setsebool -P httpd_use_nfs 1
setsebool -P spacewalk_nfs_mountpoint 1
Those 2 adjustments resolved a number of problems that I was seeing.
I’m now successfully running rhnpush.
I found the fix while running “denied” entries in /var/log/audit/audit.log
through audit2why
type=AVC msg=audit(1423517214.815:213656): avc: denied { add_name } for
pid=25064 comm="httpd" name="Deployment_Guide-de-DE-5.8-1.el5-noarchTA2GNf"
scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:nfs_t:s0
tclass=dir
Was caused by:
One of the following booleans was set incorrectly.
Description:
spacewalk_nfs_mountpoint
Allow access by executing:
# setsebool -P spacewalk_nfs_mountpoint 1
Description:
Allow httpd to access nfs file systems
Allow access by executing:
# setsebool -P httpd_use_nfs 1
Robert Boyd
Sr. Systems Engineer
PeopleFluent
p. 919-645-2972 | c. 919-306-4681
e. robert.b...@peoplefluent.com<mailto:robert.b...@peoplefluent.com>
[http://mktg.peoplefluent.com/rs/peopleclick/images/140410_PF4colorLOGOx150.png]<http://www.peoplefluent.com/>
Click here<http://www.peoplefluent.com/> to experience the power of the new
PeopleFluent Mirror Suite ™
Visit: www.peoplefluent.com<http://www.peoplefluent.com/> | Read: PeopleFluent
Blog<http://peoplefluent.com/resources/peoplefluent-blog> | Follow:
@PeopleFluent<http://twitter.com/peoplefluent>
From: spacewalk-list-boun...@redhat.com
[mailto:spacewalk-list-boun...@redhat.com] On Behalf Of Boyd, Robert
Sent: Monday, February 09, 2015 3:45 PM
To: spacewalk-list@redhat.com
Subject: Re: [Spacewalk-list] Osad errors on Spacewalk 2.2 Server
One issue turned out to be an SElinux issue with osa-dispatcher.
_______________________________________________
Spacewalk-list mailing list
Spacewalk-list@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list
