mysql errors

D

Drexxorx

Verified User
Joined
Nov 13, 2006
Messages
12
Nov 16 11:45:01 xxx kernel: audit(1163695501.516:43): avc: denied { write } for pid=16416 comm="mysqld" name="[263922]" dev=pipefs ino=263922 scontext=root:system_r:mysqld_t tcontext=root:system_r:unconfined_t tclass=fifo_file
Nov 16 11:45:01 xxx kernel: audit(1163695501.529:44): avc: denied { append } for pid=16416 comm="mysqld" name="mysqld.log" dev=dm-0 ino=4703203 scontext=root:system_r:mysqld_t tcontext=root:object_r:var_log_t tclass=file
Nov 16 11:45:01 xxx kernel: audit(1163695501.531:45): avc: denied { create } for pid=16416 comm="mysqld" name="mysql.sock" scontext=root:system_r:mysqld_t tcontext=root:object_r:var_lib_t tclass=sock_file
Nov 16 11:45:01 xxx kernel: audit(1163695501.546:46): avc: denied { read } for pid=16416 comm="mysqld" name="host.frm" dev=dm-0 ino=4734987 scontext=root:system_r:mysqld_t tcontext=root:object_r:var_lib_t tclass=file
Nov 16 11:45:01 xxx kernel: audit(1163695501.547:47): avc: denied { getattr } for pid=16416 comm="mysqld" name="host.MYI" dev=dm-0 ino=4734988 scontext=root:system_r:mysqld_t tcontext=root:object_r:var_lib_t tclass=file
Nov 16 11:45:01 xxx kernel: audit(1163695501.547:48): avc: denied { write } for pid=16416 comm="mysqld" name="host.MYI" dev=dm-0 ino=4734988 scontext=root:system_r:mysqld_t tcontext=root:object_r:var_lib_t tclass=file
Nov 16 11:45:01 xxx kernel: audit(1163695501.550:49): avc: denied { getattr } for pid=16416 comm="mysqld" name="mysqld.log" dev=dm-0 ino=4703203 scontext=root:system_r:mysqld_t tcontext=root:object_r:var_log_t tclass=file
Click to expand...
 
it looks like a SELinux problem.... but not familiair with that...

Maybe you can google on it

- Mike

Maybe this helps you:
http://forums.mysql.com/read.php?52,97732,97732

audit2allow command told me to add these policies:

allow mysqld_t file_t:dir { add_name getattr read remove_name search write };
allow mysqld_t file_t:file { create execute getattr read unlink write };
allow mysqld_t file_t:lnk_file read;
Click to expand...
 
Last edited:
Using a public webserver with SELINUX is going to cause nothing but errors. The current status of SELINUX really doesn't give you enough rights to run a public webserver.

You're going to have a problem every time a user is added, for example.

Jeff
 
You must log in or register to reply here.
Back
Top