Let selinux-policy handle port 7390

Since selinux-policy-3.9.16-5.fc15 is out, the dogtag port 7390 is handled via selinux-policy and there is no need to manage it in FreeIPA installer. https://fedorahosted.org/freeipa/ticket/1205
2025-02-25 18:55:28 -06:00 · 2011-05-06 13:54:58 +02:00
parent da1d2f5a0d
commit e2aab9636e
1 changed files with 0 additions and 18 deletions
--- a/ipaserver/install/cainstance.py
+++ b/ipaserver/install/cainstance.py
@@ -339,15 +339,6 @@ class CADSInstance(service.Service):
        dsdb.create_pin_file()

    def enable_ssl(self):
-        (stdout, stderr, rc) = ipautil.run(["/usr/sbin/semanage",
-             "port", "-a",
-             "-t", "ldap_port_t",
-             "-p", "tcp",
-             "7390"], raiseonerr=False)
-        if rc != 0:
-            if stderr.find('already defined') == -1:
-                logging.critical("Failed to add SELinux rule for port 7390")
-
        conn = ipaldap.IPAdmin("127.0.0.1", port=DEFAULT_DSPORT)
        conn.simple_bind_s("cn=directory manager", self.dm_password)

@@ -423,15 +414,6 @@ class CADSInstance(service.Service):
                logging.critical("failed to delete user %s" % e)
        self.service_name = sav_name

-        (stdout, stderr, rc) = ipautil.run(["/usr/sbin/semanage",
-             "port", "-d",
-             "-t", "ldap_port_t",
-             "-p", "tcp",
-             "7390"], raiseonerr=False)
-        if rc != 0:
-            if stderr.find('not defined') == -1:
-                logging.critical("Failed to remove SELinux rule for port 7390")
-
 class CAInstance(service.Service):
    """
    In the self-signed case the CA exists in the NSS_DB database.