Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-28557

ipahostgroup, ipahbac*, and ipasudo* modules failing when fapolicyd is running

    XMLWordPrintable

Details

    • Normal
    • sst_idm_ipa
    • ssg_idm
    • False
    • Hide

      None

      Show
      None
    • Unspecified

    Description

      What were you trying to do that didn't work?

        Create and configure host groups, hbac rules, and sudo rules.

      Please provide the package NVR for which bug is seen:

      How reproducible:

        All the time

      Steps to reproduce

      1. Run https://gitlab.cee.redhat.com/mralph/rhone on a system running fapolicyd
      2.  
      3.  

      Expected results

        Playbook completes successfully like it does when fapolicyd isn't running.

      Actual results

        Fails with the following fapolicyd debug denys:
      perm=open auid=1000 pid=52687 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744481.072006-20113-213481969138473/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52687 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744481.072006-20113-213481969138473/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52841 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744483.386105-20133-173796136010476/AnsiballZ_ipahostgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52841 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744483.386105-20133-173796136010476/AnsiballZ_ipahostgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52955 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744487.6325023-20142-171031175678658/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52955 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744487.6325023-20142-171031175678658/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53110 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744489.31752-20151-263596905800409/AnsiballZ_ipahbacsvc.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53110 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744489.31752-20151-263596905800409/AnsiballZ_ipahbacsvc.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53222 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744491.8497138-20159-155452008215010/AnsiballZ_ipahbacsvcgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53222 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744491.8497138-20159-155452008215010/AnsiballZ_ipahbacsvcgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53334 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744494.4644642-20167-184117501990508/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53334 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744494.4644642-20167-184117501990508/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53450 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744498.467987-20175-159504314657403/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53450 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744498.467987-20175-159504314657403/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53562 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744501.0873296-20183-59614561500771/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53562 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744501.0873296-20183-59614561500771/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53673 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744510.8678215-20223-229576411798116/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53673 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744510.8678215-20223-229576411798116/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53827 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744512.6495857-20231-78144474762512/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53827 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744512.6495857-20231-78144474762512/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53938 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744515.3975194-20239-178009638676003/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53938 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744515.3975194-20239-178009638676003/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54049 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744517.5499787-20247-100301027343042/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54049 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744517.5499787-20247-100301027343042/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54160 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744519.7139833-20255-173438402303228/AnsiballZ_ipasudocmdgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54160 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744519.7139833-20255-173438402303228/AnsiballZ_ipasudocmdgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54272 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744522.085666-20263-87689466904526/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54272 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744522.085666-20263-87689466904526/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54387 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744526.0156453-20272-139188711774379/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54387 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744526.0156453-20272-139188711774379/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0

      Attachments

        Activity

          People

            twoerner Thomas Woerner
            rhn-support-mralph Mike Ralph
            Thomas Woerner Thomas Woerner
            Varun Mylaraiah Varun Mylaraiah
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: