[MDEV-24941] SElinux incorrect label for server socket - Jira

XML

Word

Printable

Details

Type: Bug
Status: Open (View Workflow)
Priority: Minor
Resolution: Unresolved
Affects Version/s: 10.5.9
Fix Version/s: 10.5, 10.6
Component/s: Platform RedHat
Labels:
None
Environment:
CentOS Linux release 8.3.2011

Description

Tried couple of locations for the server's `socket` parameter

These two end up with correct label mysqld_var_run_t
/var/run/mysql/imthesocket.sock
/var/run/mysqld/imalsothesocket.sock

And these two have incorrect labels
/var/run/mariadb/itriedtobeasocket.sock is labeled var_run_t
/var/lib/mysql/mysql.sock is labeled as mysqld_db_t
Both of which can be fixed by running restorecon on them which flips them back to mysqld_var_run_t

Also might be related to older issue ~~MDEV-10405~~ and 10.3.27 wasn't affected by this as it was the starting point of the upgrade to 10.5.8. Clean install is also affected.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

mysqld_fcontext.txt
2021-02-24 14:53
5 kB
Jesse Sandberg

Issue Links

relates to

MDEV-30520 SELinux incorrectly labeled mariadbd

Stalled

MDEV-10405 mysql.sock gets created with different SELinux context

Closed

links to

Fedora Repo of policy

Activity

People

Assignee:: Unassigned

Reporter:: Jesse Sandberg

Votes:: 3 Vote for this issue

Watchers:: 13 Start watching this issue

Dates

Created:: 2021-02-22 17:47

Updated:: 2023-10-17 04:41

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.