Glance scrubber SELinux denials
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Glance scrubber on RHEL7 from RDO with SELinux enabled get denied connecting to cinder & swift
type=AVC msg=audit(
system_
type=AVC msg=audit(
system_
type=AVC msg=audit(
system_
Enabling the nis_enabled seboolean allows connections to cinder,
swift looks to need
allow glance_scrubber_t http_cache_
This is a bug in RDO packaging rather than bug in Glance. Please file the bug in RDO [0] and you have much more luck to get it fixed.
[0] https:/ /bugzilla. redhat. com/enter_ bug.cgi? product= RDO