Fixed SELinux contexts for MySQL data directories.

2010-10-06 16:07:52 +03:00 · 2010-10-06 16:07:52 +03:00 · ffee877701
commit ffee877701
parent d0c52a606a
1 changed files with 16 additions and 0 deletions
--- a/mysql/manifests/init.pp
+++ b/mysql/manifests/init.pp
@ -29,11 +29,13 @@ class mysql::server {
            mode    => 0755,
            owner   => mysql,
            group   => mysql,
+            seltype => "mysqld_db_t",
            require => Package["mysql-server"],
        }
        file { "/srv/mysql":
            ensure  => link,
            target  => "${mysql_datadir}",
+            seltype => "mysqld_db_t",
            require => File["${mysql_datadir}"],
        }
    } else {
@ -42,10 +44,24 @@ class mysql::server {
            mode    => 0755,
            owner   => mysql,
            group   => mysql,
+            seltype => "mysqld_db_t",
            require => Package["mysql-server"],
        }
    }

+    if $selinux {
+        selinux::manage_fcontext { "/srv/mysql(/.*)?":
+            type   => "mysqld_db_t",
+            before => File["/srv/mysql"],
+        }
+        if $mysql_datadir {
+            selinux::manage_fcontext { "${mysql_datadir}(/.*)?":
+                type   => "mysqld_db_t",
+                before => File["${mysql_datadir}"],
+            }
+        }
+    }
+
    service { "mysqld":
 	ensure  => running,
 	enable  => true,