NFS Connectathon: SELinux prevents rpcbind

Snippet of test failure

# https://s3.us-east-1.amazonaws.com/arr-cki-prod-datawarehouse-public/datawarehouse-public/2022/07/25/redhat:594687333/build_x86_64_redhat:594687333_x86_64/tests/3/results_0001/job.01/recipes/12342447/tasks/71/results/1658782382/logs/avc.log
SELinux status:                 enabled
SELinuxfs mount:                /sys/fs/selinux
SELinux root directory:         /etc/selinux
Loaded policy name:             targeted
Current mode:                   enforcing
Mode from config file:          permissive
Policy MLS status:              enabled
Policy deny_unknown status:     allowed
Memory protection checking:     actual (secure)
Max kernel policy version:      33
selinux-policy-36.10-1.fc36.noarch
----
time->Mon Jul 25 23:17:12 2022
type=AVC msg=audit(1658805432.855:14488): avc:  denied  { name_bind } for  pid=1525031 comm="rpcbind" src=62769 scontext=system_u:system_r:rpcbind_t:s0 tcontext=system_u:object_r:unreserved_port_t:s0 tclass=udp_socket permissive=0

Test logs on DataWarehouse

Test : https://datawarehouse.cki-project.org/kcidb/tests/4492384
- Beaker XML : https://s3.amazonaws.com/arr-cki-prod-trusted-artifacts/trusted-artifacts/594687333/setup%20x86_64/2758971455/artifacts/beaker.xml

DataWarehouse issue

DW issue : https://datawarehouse.cki-project.org/issue/1432
- Regex : https://datawarehouse.cki-project.org/issue/-/regex/1404
  - Text Match : avc:\s+denied\s+{ \S+ } for pid=\d+ comm="rpcbind" src=\d+ scontext=system_u:system_r:rpcbind_t
  - (Log) File Name Match : avc.log
  - Test Name Match : NFS Connectathon
  - KPET Tree Name Match : (upstream|rawhide|eln)

Additional details

N/A

In case opening the links above result in a 404 page on DataWarehouse, please make sure you are correctly logged into DataWarehouse via Red Hat SSO.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information