Bug #50514 | agent install fails on RH, fedora 12 where selinux checks for allow_execstack | ||
---|---|---|---|
Submitted: | 21 Jan 2010 16:43 | Modified: | 30 Apr 2010 10:57 |
Reporter: | Shannon Wade | Email Updates: | |
Status: | Closed | Impact on me: | |
Category: | MySQL Enterprise Monitor: Agent | Severity: | S3 (Non-critical) |
Version: | 2.1.0.1096 | OS: | Linux (F12/64) |
Assigned to: | MySQL Verification Team | CPU Architecture: | Any |
[21 Jan 2010 16:43]
Shannon Wade
[2 Feb 2010 11:50]
Kent Boortz
OpenSSL is now compiled with a patch that removes the execstack property from the shared library --- a/Makefile.shared.ORIG 2008-09-17 17:56:40.000000000 +0200 +++ b/Makefile.shared 2010-02-02 02:07:53.859011400 +0100 @@ -149,7 +149,7 @@ SHLIB_SUFFIX=; \ ALLSYMSFLAGS='-Wl,--whole-archive'; \ NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \ - SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX" + SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX -Wl,-znoexecstack" DO_GNU_APP=LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBRPATH)"
[30 Apr 2010 10:57]
MC Brown
A note has been added to the 2.1.1 changelog: When installing &merlin_agent; on a Linux operating system using the SELinux security environment, the installation would fail if the <literal>allow_execstack</literal> option had been enabled.