[Ovirt-devel] [PATCH ovirt-node] run storage config script under different selinux context

Darryl Pierce dpierce at redhat.com
Thu Nov 20 20:24:47 UTC 2008 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Alan Pevec wrote:
> REPOST with fixed ovirt-firstboot
> ovirt-config-storage needs to access libvirt,
> and initscripts run in initrc_t which can't access libvirtd socket
> ---
>  scripts/ovirt-config-setup |    4 +++-
>  scripts/ovirt-firstboot    |    2 +-
>  2 files changed, 4 insertions(+), 2 deletions(-)
> 
> diff --git a/scripts/ovirt-config-setup b/scripts/ovirt-config-setup
> index 8408d14..0f53100 100755
> --- a/scripts/ovirt-config-setup
> +++ b/scripts/ovirt-config-setup
> @@ -14,7 +14,9 @@ while true; do
>  
>          case "$OPTION" in
>              "Networking") ovirt-config-networking ; break ;;
> -            "Storage")    ovirt-config-storage    ; break ;;
> +            "Storage")
> +                newrole -t virtd_t -- -c ovirt-config-storage ;
> +                break ;;
>              "Logging")    ovirt-config-logging    ; break ;;
>              "Password")   ovirt-config-password   ; break ;;
>              "Quit")       exit 0 ;;
> diff --git a/scripts/ovirt-firstboot b/scripts/ovirt-firstboot
> index a75319a..a7c88f4 100755
> --- a/scripts/ovirt-firstboot
> +++ b/scripts/ovirt-firstboot
> @@ -31,7 +31,7 @@ start ()
>  {
>      if is_auto_install; then
>          ovirt-config-networking AUTO
> -        ovirt-config-storage AUTO
> +        newrole -t virtd_t -- -c 'ovirt-config-storage AUTO'
>          ovirt-config-logging AUTO
>      else
>          ovirt-config-setup

In running this script plus the other for node-image I'm not able to get
the firstboot system working.

During boot the firstboot script itself never runs.

When I log in as root and run the firstboot script itself, using both
"service ovirt-firstboot start" and "/etc/init.d/ovirt-firstboot start",
I see no output and am dumped directly back to the command prompt.

When I run the ovirt-config-setup menu itself and try to run the storage
configuration I get the error message:

unconfined_u:unconfined_r:virtd_t:s0-s0:c0.c1023: is not a valid context

- --
Darryl L. Pierce <dpierce at redhat.com> : GPG KEYID: 6C4E7F1B
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iEYEARECAAYFAkklx4sACgkQjaT4DmxOfxuigwCfQOJhmC3l18idLn4TTE01L7Uh
eLYAoKNath7CI77W/fxeUsl0iu5B3y6Q
=ceU5
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dpierce.vcf
Type: text/x-vcard
Size: 319 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/ovirt-devel/attachments/20081120/fa1b3889/attachment.vcf>

More information about the ovirt-devel mailing list