[Bug 638401] [NEW] automated tests run during build fail due to apparmor protections for mysqld unless build is done in /tmp
Clint Byrum
clint at fewbar.com
Tue Sep 14 21:02:32 BST 2010
Public bug reported:
Binary package hint: php5
The automated tests that are run during the build process try to run
mysql relative to the build directory.
Because of the apparmor profile, when mysql-server is installed,
/usr/sbin/mysqld is only allowed arbitrary access under temp dirs (/tmp,
/var/tmp, etc).
Also bug #375371 proposes to go even further and restrict that to a dir
owned and only writable by mysql.
Proposed solution is to copy the necessary pieces of mysqld into the
build directory and run them as part of the build step. This will
prevent the apparmor profile for /usr/sbin/mysqld from being matched,
and will allow the proposed security enhancement to go forward.
I have tested this and it seems to work fine on maverick. Will push up a
branch when all tests complete.
** Affects: php5 (Ubuntu)
Importance: Undecided
Status: New
--
automated tests run during build fail due to apparmor protections for mysqld unless build is done in /tmp
https://bugs.launchpad.net/bugs/638401
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.
More information about the Ubuntu-server-bugs
mailing list