Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-28557

ipahostgroup, ipahbac*, and ipasudo* modules failing when fapolicyd is running

XMLWordPrintable

    • rhel-sst-idm-ipa
    • ssg_idm
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • None

      What were you trying to do that didn't work?

        Create and configure host groups, hbac rules, and sudo rules.

      Please provide the package NVR for which bug is seen:

      How reproducible:

        All the time

      Steps to reproduce

      1. Run https://gitlab.cee.redhat.com/mralph/rhone on a system running fapolicyd
      2.  
      3.  

      Expected results

        Playbook completes successfully like it does when fapolicyd isn't running.

      Actual results

        Fails with the following fapolicyd debug denys:
      perm=open auid=1000 pid=52687 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744481.072006-20113-213481969138473/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52687 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744481.072006-20113-213481969138473/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52841 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744483.386105-20133-173796136010476/AnsiballZ_ipahostgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52841 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744483.386105-20133-173796136010476/AnsiballZ_ipahostgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52955 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744487.6325023-20142-171031175678658/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=52955 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744487.6325023-20142-171031175678658/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53110 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744489.31752-20151-263596905800409/AnsiballZ_ipahbacsvc.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53110 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744489.31752-20151-263596905800409/AnsiballZ_ipahbacsvc.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53222 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744491.8497138-20159-155452008215010/AnsiballZ_ipahbacsvcgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53222 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744491.8497138-20159-155452008215010/AnsiballZ_ipahbacsvcgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53334 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744494.4644642-20167-184117501990508/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53334 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744494.4644642-20167-184117501990508/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53450 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744498.467987-20175-159504314657403/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53450 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744498.467987-20175-159504314657403/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53562 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744501.0873296-20183-59614561500771/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53562 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744501.0873296-20183-59614561500771/AnsiballZ_ipahbacrule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53673 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744510.8678215-20223-229576411798116/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53673 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744510.8678215-20223-229576411798116/AnsiballZ_setup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53827 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744512.6495857-20231-78144474762512/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53827 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744512.6495857-20231-78144474762512/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53938 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744515.3975194-20239-178009638676003/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=53938 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744515.3975194-20239-178009638676003/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54049 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744517.5499787-20247-100301027343042/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54049 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744517.5499787-20247-100301027343042/AnsiballZ_ipasudocmd.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54160 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744519.7139833-20255-173438402303228/AnsiballZ_ipasudocmdgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54160 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744519.7139833-20255-173438402303228/AnsiballZ_ipasudocmdgroup.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54272 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744522.085666-20263-87689466904526/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54272 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744522.085666-20263-87689466904526/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54387 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744526.0156453-20272-139188711774379/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0
      perm=open auid=1000 pid=54387 exe=/usr/bin/python3.9 : path=/home/miker/.ansible/tmp/ansible-tmp-1709744526.0156453-20272-139188711774379/AnsiballZ_ipasudorule.py ftype=text/x-python trust=0

              twoerner Thomas Woerner
              rhn-support-mralph Mike Ralph
              Thomas Woerner Thomas Woerner
              Varun Mylaraiah Varun Mylaraiah
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: