| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
| Subject: | pgsql: Fix contrib/sepgsql test policy to work with latest SELinux rele |
| Date: | 2019-07-25 15:03:58 |
| Message-ID: | E1hqfHi-0001wl-Q5@gemulon.postgresql.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Fix contrib/sepgsql test policy to work with latest SELinux releases.
As of Fedora 30, it seems that the system-provided macros for setting
up user privileges in SELinux policies don't grant the ability to read
/etc/passwd, as they formerly did. This restriction breaks psql
(which tries to use getpwuid() to obtain the user name it's running
under) and thereby the contrib/sepgsql regression test. Add explicit
specifications that we need the right to read /etc/passwd.
Mike Palmiotto, per a report from me. Back-patch to all supported
branches.
Discussion: https://postgr.es/m/23856.1563381159@sss.pgh.pa.us
Branch
------
REL_10_STABLE
Details
-------
https://git.postgresql.org/pg/commitdiff/5c3d47287fd7c76aa376d035695bffde6d59a7c8
Modified Files
--------------
contrib/sepgsql/sepgsql-regtest.te | 11 +++++++++++
1 file changed, 11 insertions(+)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andrew Dunstan | 2019-07-25 15:42:19 | pgsql: Honor MSVC WindowsSDKVersion if set |
| Previous Message | Peter Eisentraut | 2019-07-25 12:42:39 | pgsql: doc: Fix typo |