Hi all,
Fedora12 has a full policy in it for Red Hat Cluster Suite and corosync,
so it should be quite possible to run clustering with SELinux in
enforcing mode now. It has been fairly well tested but there still could
be some areas left that need attention, please report a problem in the
Red Hat bugzilla if you see any unwanted AVCs.
There is currently one known problem (and that's why I'm ccing the
openais list too), and that is if you run corosync without cman you
could get some AVCs.
This problem is fixed in the selinux policy revision -43, but -41 is in
Fedora GA so it might be a little while before it reaches the archives.
In the meantime the problem is easily fixed with a single command:
# chcon -t initrc_exec_t /etc/init.d/corosync
Chrissie
--
Linux-cluster mailing list
Linux-cluster@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/linux-cluster
