Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10753

selinux policies prevent 10.1.17-1.el7.centos to access: initrc_tmp_t + var_log_t

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 10.1.17
    • Fix Version/s: 10.1
    • Component/s: Platform RedHat
    • Labels:
    • Environment:
      Centos, SL, Redhat

      Description

      upgrade from 10.1.16 and failure to restart

      $ ausearch -ts 14:18 | audit2allow
      #============= mysqld_t ==============
      allow mysqld_t initrc_tmp_t:file open;
      allow mysqld_t var_log_t:file open;

      maybe even more silent denials, but I haven't checked.
      $ setenforce 0
      works

        Attachments

          Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. MDEV-10767 /tmp/wsrep_recovery.${RANDOM} file created in unallowed SELinux context

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

            Activity

              People

              Assignee:
              axel Axel Schwenke
              Reporter:
              lejeczek none now
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated: