Bug Report: SELinux Problems with Upgrade of Foreman 1.24.2/Katello 3.14.1 to latest Foreman 2.0.0/Katello 3.15.0

I believe I may have found the source of the initial bug in the upgrade. It may have been due to the IUS repository being enabled (for pulling in that repository’s version of httpd for security audit compliance purposes). That repository also added its own newer versions of python after the initial build of this system, which likely led to unexpected results in the upgrade scripts.

In trying to replicate the problem from scratch, I found that the installer could not even complete a basic initial install with that repository enabled.

To permanently work around this issue, (particularly as it relates to our requirements from automated external audit scripts), I will be rebuilding this system on CentOS8 as soon as the compatible releases of Foreman/Katello stabilize.

That can indeed be the cause of such failures. We only test running Foreman/Katello on a clean machine and recommend nothing else is installed on it, as it can have such affects on package dependencies and configuration. Installing a different version of httpd may or may not work - our installer sets up httpd configuration and selinux policies based on the version available in the mainline repos, so if the version you install has any changes in these regards, YMMV.