Re: [gentoo-hardened] mysql 4.1 requires shlib_t:file execmod?

[Antoine Martin <antoine@xxxxxxxxxxxxx>]

On Sat, 2005-10-22 at 16:53 +0200, pageexec@xxxxxxxxxxx wrote:
> On 22 Oct 2005 at 15:15, Antoine Martin wrote:
> > I've upgraded a (gentoo x86 selinux) system from MySQL 4.0 to 4.1, and
> > since then some of the software that uses mysql-libs refuse to run
> > without 'shlib_t:file execmod'.
> > 
> > ie: when starting postfix (built and rebuilt with mysql support):
> > postfix: error while loading shared
> > libraries: /usr/lib/libmysqlclient.so.14: cannot restore segment prot
> > after reloc: Permission denied
> 
> the reason might be text relocations, even though they should have
> been fixed already upstream. see long story at
> 
>   http://bugs.gentoo.org/show_bug.cgi?id=42968
>   http://bugs.mysql.com/bug.php?id=11642
>From the two threads above it looks like the fix should have gone in
4.1.14 (which is what I am running now)

> 
> what does scanelf -T /usr/lib/libmysqlclient.so.14 report?
> if it's not text relocs, then post an strace please.
Is scanelf a PaX tool?

Antoine


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.