From: Dan Walsh Date: Tue, 6 Dec 2011 20:48:58 +0000 (-0500) Subject: Allow mysqld_safe to delete the mysql_db_t sock_file X-Git-Tag: 000~35 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=ddaea88ae900e10922a659c94e45ff6eb713e762;p=people%2Fstevee%2Fselinux-policy.git Allow mysqld_safe to delete the mysql_db_t sock_file --- diff --git a/policy/modules/services/mysql.te b/policy/modules/services/mysql.te index 8fcabd8a..2f51d5ad 100644 --- a/policy/modules/services/mysql.te +++ b/policy/modules/services/mysql.te @@ -162,6 +162,7 @@ allow mysqld_safe_t self:process { setsched getsched setrlimit }; allow mysqld_safe_t self:fifo_file rw_fifo_file_perms; read_lnk_files_pattern(mysqld_safe_t, mysqld_db_t, mysqld_db_t) +delete_sock_files_pattern(mysqld_safe_t, mysqld_db_t, mysqld_db_t) domtrans_pattern(mysqld_safe_t, mysqld_exec_t, mysqld_t)