No Write Permission on ACFS Mount Point
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |
APPLIES TO:
Oracle Database - Enterprise Edition - Version 11.2.0.3 to 11.2.0.3 [Release 11.2]
Linux x86-64
SYMPTOMS
As oracle/ Grid user
oracle@
[oracle@
touch: cannot touch `test’: Permission denied
[oracle@
As root
[root@
[root@
touch: cannot touch `test’: Permission denied
[root@
The permission on the mount point was 755 — still they had the above issue.
You are trying to vi open a General Purpose ACFS and encountering
E212: Can't open file for writing
CHANGES
none
CAUSE
SELinux is enabled on the system
strace -aef -o /temp/strace.out vi test.txt
shows:
open(“/lib64/libselinux.so.1”, O_RDONLY) = 3 <————————- here
…
open(“/proc/self/task/9688/attr/current”, O_RDONLY) = 4
read(4, “unconfined_u
unconf”…, 4095) = 54
close(4) = 0
getxattr(“/var/tmp/test.txt.swp”, “security.selinux”,
“unconfined_u
user_tmp_t:s0”, 255) = 36 <———————- here
open(“/selinux/mls”, O_RDONLY) = 4
read(4, “1”, 19) = 1
close(4) = 0
socket(PF_FILE, SOCK_STREAM|SOCK_CLOEXEC, 0) = 4
connect(4, {sa_family=AF_FILE, path=”/var/run/setrans/.setrans-unix”}, 110) =
-1 ENOENT (No such file or directory)
close(4) = 0
getxattr(“/var/tmp/test.txt.swp”, “security.selinux”,
“unconfined_uuser_tmp_t:s0”, 255) = 36
lseek(3, 0, SEEK_SET) = 0
write(3, “b0VIM 7.2\0\0\0\0\20\0\0\0\0\0\0\0\0\0\0\330%\0\0grid”…, 4096) =
4096
select(1, [0], NULL, [0], {0, 0}) = 0 (Timeout)
SOLUTION
Disable SELinux — They were able to create the files in the acfs directory
Documentation reference for compatibility of SELinux and ACFS:
-————————————————————————————————————————————————
http://st-doc.us.oracle.com/11/112/install.112/e41961/storage.htm\#CWLIN257
Oracle® Grid Infrastructure Installation Guide
11g Release 2 (11.2) for Linux
E41961-03
Note:
Deployment of Security Enhanced Linux (SELinux) is not supported on Oracle
ACFS file systems.
-————————————————————————————————————————————————
Please use ‘sestatus’ to check if SELinux is enabled. If enabled, it must be disabled.
In this Document
| Symptoms |
| Cause |
| Solution |
APPLIES TO:
Oracle Database - Standard Edition - Version 11.2.0.3 and later
Information in this document applies to any platform.
SYMPTOMS
Touching a file on ACFS filesystem gives permisison denied error
cd /u01/app/oracle/product/11.2.0/dbhome_1
[root@oracsort2 dbhome_1]$ touch kk
touch: cannot touch `kk’: Permission denied
CAUSE
Selinux is enabled causing the issue.
SOLUTION
Disable selinux and try the touch again
超、凢脫俗
ゞ 浴缸里的玫瑰
╰半夏微凉°
向右看齐
深藏阁楼爱情的钟
傷城~
还没有评论,来说两句吧...