sentinel notification-script /var/opt/rh/rh-redis32/redis/notify.sh execution denied by selinux

Solution In Progress - Updated -

Issue

  • redis_enable_notify SELinux boolean support similar to httpd_enable_cgi for httpd requested feature enhancement
  • Red Hat Software Collection now provides redis; however, with SELinux enabled the redis-sentinel notification scripts are too limited to be useful. Allowing them broader access (similar to cgi script in httpd) is believed to make redis more useful while not disabling SELinux.
  • The current redis SELinux options are too restricting to be useful for large enterprises, this RFE would help to keep redis under SELinux control.
  • systemctl start rh-redis32-redis-sentinel fails with

    sentinel notification-script mymaster /var/opt/rh/rh-redis32/redis/notify.sh
    

Environment

  • Red Hat Enterprise Linux (RHEL) 7
    • Red Hat Software Collections rh-redis32-redis

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In