I am trying to run Magento on Oracle Linux 8. I have found php-fpm will not run because of an SELinux policy.
Please see report below:
--------------------------------
SELinux is preventing php-fpm from execmod access on the file /usr/sbin/php-fpm.
***** Plugin catchall (100. confidence) suggests **************************
If you believe that php-fpm should be allowed execmod access on the php-fpm file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# ausearch -c 'php-fpm' --raw | audit2allow -M my-phpfpm
# semodule -X 300 -i my-phpfpm.pp
Additional Information:
Source Context system_u:system_r:httpd_t:s0
Target Context system_u:object_r:httpd_exec_t:s0
Target Objects /usr/sbin/php-fpm [ file ]
Source php-fpm
Source Path php-fpm
Port <Unknown>
Host <Unknown>
Source RPM Packages
Target RPM Packages php-
fpm-7.4.19-2.module+el8.6.0+20552+0a59ce9f.aarch64
SELinux Policy RPM selinux-policy-targeted-3.14.3-95.0.1.el8.noarch
Local Policy RPM selinux-policy-targeted-3.14.3-95.0.1.el8.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Permissive
Host Name staging
Platform Linux staging 5.4.17-2136.308.9.el8uek.aarch64 #2
SMP Mon Jun 13 21:08:46 PDT 2022 aarch64 aarch64
Alert Count 1
First Seen 2022-06-16 10:47:38 PDT
Last Seen 2022-06-16 10:47:38 PDT
Local ID 2fe0bf84-2db7-4517-8c7e-4a4156f23d1f
Raw Audit Messages
type=AVC msg=audit(1655401658.658:32659): avc: denied { execmod } for pid=66257 comm="php-fpm" path="/usr/sbin/php-fpm" dev="dm-0" ino=2409990 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:httpd_exec_t:s0 tclass=file permissive=1
Hash: php-fpm,httpd_t,httpd_exec_t,file,execmod
