[Linux-cluster] Corosync & SELinux in Fedora 12
ccaulfie at redhat.com
Tue Nov 17 13:40:14 UTC 2009
Fedora12 has a full policy in it for Red Hat Cluster Suite and corosync,
so it should be quite possible to run clustering with SELinux in
enforcing mode now. It has been fairly well tested but there still could
be some areas left that need attention, please report a problem in the
Red Hat bugzilla if you see any unwanted AVCs.
There is currently one known problem (and that's why I'm ccing the
openais list too), and that is if you run corosync without cman you
could get some AVCs.
This problem is fixed in the selinux policy revision -43, but -41 is in
Fedora GA so it might be a little while before it reaches the archives.
In the meantime the problem is easily fixed with a single command:
# chcon -t initrc_exec_t /etc/init.d/corosync
More information about the Linux-cluster