Ubuntu
mysql-dfsg-5.0 package

mysql apparmor profile forbids raising max open files limit

Bug #306541 reported by Andi Hechtbauer
14
This bug affects 2 people
Affects Status Importance Assigned to Milestone
mysql-dfsg-5.0 (Ubuntu)
Fix Released
Undecided
Jamie Strandboge
Hardy
Won't Fix
Undecided
Unassigned
Intrepid
Won't Fix
Undecided
Unassigned
Jaunty
Fix Released
Undecided
Jamie Strandboge

Bug Description

Binary package hint: mysql-server-5.0

Mysql Server 5.0.51a-3ubuntu5.4 / Ubuntu 8.04, when apparmor is active and in enforcement mode (default).

Some settings in /etc/mysql/my.cnf won't have any effect. E.g. setting the table_cache to something above 1024 will silently fall back to 64, since "capability sys_resource," is missing from /etc/apparmor.d/usr.sbin.mysqld

something like audit(1228474870.984:3): type=1503 operation="capable" name="sys_resource" pid=26842 profile="/usr/sbin/mysqld" namespace="default"
will appear in the syslog.

Revision history for this message
Pavel Zheltouhov (pwlnw) wrote :

This bug affects me too and all mass hosting servers with thousands of user tables.
Please, add this string to apparmor profile.

Revision history for this message
Arjen Lentz (arjen-lentz) wrote :

Apparmor was discontinued, right?

Revision history for this message
Pavel Zheltouhov (pwlnw) wrote :

Maybe discontinued, but package still available and if user install apparmor, mysql will work poorly.
By default, apparmor installed in Hardy and Interpid. Don't know how about new Janty.

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Apparmor is not discontinued. It is being actively developed, is close to being in the upstream kernel and is supported by Ubuntu.

Jamie Strandboge (jdstrand)
Changed in mysql-dfsg-5.0 (Ubuntu Hardy):
status: New → Confirmed
Changed in mysql-dfsg-5.0 (Ubuntu Intrepid):
status: New → Confirmed
Changed in mysql-dfsg-5.0 (Ubuntu Jaunty):
status: New → Confirmed
Changed in mysql-dfsg-5.0:
assignee: nobody → jdstrand
status: Confirmed → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package mysql-dfsg-5.0 - 5.1.30really5.0.75-0ubuntu8

---------------
mysql-dfsg-5.0 (5.1.30really5.0.75-0ubuntu8) jaunty; urgency=low

  * debian/apparmor-profile: add 'capability sys_resource' so that
    settings in /etc/mysql/my.cnf will work properly (LP: #306541)

 -- Jamie Strandboge <email address hidden> Tue, 17 Mar 2009 18:04:05 -0500

Changed in mysql-dfsg-5.0:
status: Fix Committed → Fix Released
Revision history for this message
Chuck Short (zulcss) wrote :

Since Intrepid has reached EOL I am going to close this SRU request.

regards
chuck

Changed in mysql-dfsg-5.0 (Ubuntu Intrepid):
status: Confirmed → Won't Fix
Revision history for this message
Rolf Leggewie (r0lf) wrote :

Hardy has seen the end of its life and is no longer receiving any updates. Marking the Hardy task for this ticket as "Won't Fix".

Changed in mysql-dfsg-5.0 (Ubuntu Hardy):
status: Confirmed → Won't Fix
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.