tripleo

SELinux blocks mysql port 4567

Bug #1339395 reported by Richard Su
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
tripleo
Won't Fix
High
Richard Su

Bug Description

When SELinux is in enforcing mode, mysql is denied access to port 4567.

/var/log/audit/audit.log
type=AVC msg=audit(1404782160.637:142): avc: denied { name_bind } for pid=2877 comm="mysqld" src=4567 scontext=system_u:system_r:mysqld_t:s0 tcontext=system_u:object_r:tram_port_t:s0 tclass=tcp_socket
type=SYSCALL msg=audit(1404782160.637:142): arch=c000003e syscall=49 success=no exit=-13 a0=b a1=7fff2cc7d5d0 a2=10 a3=7fff2cc7d3f0 items=0 ppid=2173 pid=2877 auid=4294967295 uid=27 gid=27 euid=27 suid=27 fsuid=27 egid=27 sgid=27 fsgid=27 tty=(none) ses=4294967295 comm="mysqld" exe="/usr/libexec/mysqld" subj=system_u:system_r:mysqld_t:s0 key=(null)

selinux-policy-3.12.1-176.fc20.noarch
selinux-policy-targeted-3.12.1-176.fc20.noarch

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to tripleo-image-elements (master)

Fix proposed to branch: master
Review: https://review.openstack.org/107232

Changed in tripleo:
status: Triaged → In Progress
Revision history for this message
Richard Su (rwsu) wrote :

Filed upstream SELinux bug: https://bugzilla.redhat.com/show_bug.cgi?id=1118052

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Change abandoned on tripleo-image-elements (master)

Change abandoned by Richard Su (<email address hidden>) on branch: master
Review: https://review.openstack.org/107232
Reason: Has been fixed in upstream solinux-policy.

Richard Su (rwsu)
Changed in tripleo:
status: In Progress → Fix Released
status: Fix Released → Won't Fix
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.