selinux/oracle-xe-selinux/oracle-xe.te | 1 + 1 file changed, 1 insertion(+)
New commits: commit d3ec414a58f5374f957963aa86656ca3449a81e1 Author: Jan Pazdziora jpazdziora@redhat.com Date: Fri Apr 6 09:44:51 2012 +0200
Allow Oracle database to ptrace self.
Addressing avc: denied { ptrace } for pid=16544 comm="oracle" scontext=root:system_r:oracle_db_t:s0 tcontext=root:system_r:oracle_db_t:s0-s0:c0.c1023 tclass=process Was caused by: Constraint violation. Check policy/constraints. Typically, you just need to add a type attribute to the domain to satisfy the constraint.
diff --git a/selinux/oracle-xe-selinux/oracle-xe.te b/selinux/oracle-xe-selinux/oracle-xe.te index 61467d6..af31a47 100644 --- a/selinux/oracle-xe-selinux/oracle-xe.te +++ b/selinux/oracle-xe-selinux/oracle-xe.te @@ -35,3 +35,4 @@ allow oracle_db_t self:process ptrace; term_dontaudit_use_console(oracle_db_t) term_dontaudit_use_console(oracle_tnslsnr_t)
+mcs_ptrace_all(oracle_db_t)
spacewalk-commits@lists.fedorahosted.org