apparmor profile prevent mysql backend usage
Bug #1766240 reported by
Jean-Daniel Dupas
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
strongswan (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
Using strongswan-systemd (the recommended modern daemon), I can't use the sql and attr-sql plugins with a mysql backend as it trigger apparmor errors:
Apr 23 13:25:23 vpn-1 audit[2970]: AVC apparmor="ALLOWED" operation="open" profile=
Apr 23 13:25:23 vpn-1 audit[2970]: AVC apparmor="ALLOWED" operation="connect" profile=
Related branches
~paelzer/ubuntu/+source/strongswan:cosmic-merge-5.6.2-2
Merged
into
ubuntu/+source/strongswan:debian/sid
at
revision 160ffc1245f6373f9875244a91b7a9d8e78d0957
- Andreas Hasenack: Approve
- Canonical Server: Pending requested
- git-ubuntu developers: Pending requested
-
Diff: 2059 lines (+1537/-90)18 files modifieddebian/changelog (+1155/-0)
debian/control (+122/-6)
debian/ipsec.secrets.proto (+0/-3)
debian/libcharon-extra-plugins.install (+64/-12)
debian/libcharon-standard-plugins.install (+19/-0)
debian/libstrongswan-extra-plugins.install (+58/-0)
debian/libstrongswan.install (+11/-6)
debian/patches/dont-load-kernel-libipsec-plugin-by-default.patch (+11/-0)
debian/patches/series (+1/-0)
debian/rules (+50/-6)
debian/strongswan-starter.install (+4/-0)
debian/strongswan-starter.postinst (+0/-57)
debian/strongswan-tnc-base.install (+16/-0)
debian/strongswan-tnc-client.install (+5/-0)
debian/strongswan-tnc-ifmap.install (+3/-0)
debian/strongswan-tnc-pdp.install (+3/-0)
debian/strongswan-tnc-server.install (+10/-0)
debian/usr.sbin.charon-systemd (+5/-0)
Changed in strongswan (Ubuntu): | |
status: | New → Triaged |
importance: | Undecided → Medium |
tags: | added: server-next |
Changed in strongswan (Ubuntu): | |
status: | Triaged → In Progress |
To post a comment you must log in.
Hi,
if you could outline how to set up the mysql backend that would help verifying this is done correctly.