From e2aab9636e66e66edd72a3cdc9c29ff0033e7eaf Mon Sep 17 00:00:00 2001
From: Martin Kosek <mkosek@redhat.com>
Date: Fri, 6 May 2011 13:54:58 +0200
Subject: Let selinux-policy handle port 7390

Since selinux-policy-3.9.16-5.fc15 is out, the dogtag port 7390 is
handled via selinux-policy and there is no need to manage it in
FreeIPA installer.

https://fedorahosted.org/freeipa/ticket/1205
---
 ipaserver/install/cainstance.py | 18 ------------------
 1 file changed, 18 deletions(-)

diff --git a/ipaserver/install/cainstance.py b/ipaserver/install/cainstance.py
index 2ada2b732..5b88253df 100644
--- a/ipaserver/install/cainstance.py
+++ b/ipaserver/install/cainstance.py
@@ -339,15 +339,6 @@ class CADSInstance(service.Service):
         dsdb.create_pin_file()
 
     def enable_ssl(self):
-        (stdout, stderr, rc) = ipautil.run(["/usr/sbin/semanage",
-             "port", "-a",
-             "-t", "ldap_port_t",
-             "-p", "tcp",
-             "7390"], raiseonerr=False)
-        if rc != 0:
-            if stderr.find('already defined') == -1:
-                logging.critical("Failed to add SELinux rule for port 7390")
-
         conn = ipaldap.IPAdmin("127.0.0.1", port=DEFAULT_DSPORT)
         conn.simple_bind_s("cn=directory manager", self.dm_password)
 
@@ -423,15 +414,6 @@ class CADSInstance(service.Service):
                 logging.critical("failed to delete user %s" % e)
         self.service_name = sav_name
 
-        (stdout, stderr, rc) = ipautil.run(["/usr/sbin/semanage",
-             "port", "-d",
-             "-t", "ldap_port_t",
-             "-p", "tcp",
-             "7390"], raiseonerr=False)
-        if rc != 0:
-            if stderr.find('not defined') == -1:
-                logging.critical("Failed to remove SELinux rule for port 7390")
-
 class CAInstance(service.Service):
     """
     In the self-signed case the CA exists in the NSS_DB database.
-- 
cgit