Open nullr0ute opened 6 months ago
the question here is why we're not catching this stuff in CI - our CI should resemble what xiaofeng tests too and this could have been caught earlier
Can you also run setsebool httpd_can_network_connect_db 1
on the FDO host to see if that helps with the issue?
the question here is why we're not catching this stuff in CI - our CI should resemble what xiaofeng tests too and this could have been caught earlier
I don't believe we have pgsql in CI yet do we? And sqlite doesn't require TCP/IP connections.
I don't believe we have pgsql in CI yet do we? And sqlite doesn't require TCP/IP connections.
we need to have a smoke test for postgres too or that path is completely untested for users (we can't rely on external tests either), let's get some new issues filed 🕺
we do have and e2e postgresql test but made using containers
FDO services fdo-manufacturing-server.service, fdo-owner-onboarding-server.service, fdo-rendezvous-server.service can't connect with postgres db. Selinux blocked the connection.
Selinux log:
This is from downstream SELinux blocking ticket