The attached patch allows postgresql_t domain to read selabel definition files
(such as /etc/selinux/targeted/contexts/sepgsql_contexts).
The upcoming version (v9.1) uses selabel_lookup(3) to assign initial security context
of database objects, we need to allow this reference.
Thanks,
--
NEC Europe Ltd, SAP Global Competence Center
KaiGai Kohei <[email protected]>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: refpolicy-pgsql-selabel.1.patch
Type: application/octet-stream
Size: 506 bytes
Desc: refpolicy-pgsql-selabel.1.patch
Url : http://oss.tresys.com/pipermail/refpolicy/attachments/20110415/17aef5f6/attachment.obj
On 4/15/2011 4:40 AM, Kohei Kaigai wrote:
> The attached patch allows postgresql_t domain to read selabel definition files
> (such as /etc/selinux/targeted/contexts/sepgsql_contexts).
>
> The upcoming version (v9.1) uses selabel_lookup(3) to assign initial security context
> of database objects, we need to allow this reference.
Merged.
--
Chris PeBenito
Tresys Technology, LLC
http://www.tresys.com | oss.tresys.com