Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Jason Zaman <perfinion@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/services/
Date: Sat, 10 Oct 2015 16:11:10
Message-Id: 1444493355.deb9b102fb562bc57e776cba6c1dee7c674c76ac.perfinion@gentoo
1 commit: deb9b102fb562bc57e776cba6c1dee7c674c76ac
2 Author: Luis Ressel <aranea <AT> aixah <DOT> de>
3 AuthorDate: Sat Oct 10 15:36:32 2015 +0000
4 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
5 CommitDate: Sat Oct 10 16:09:15 2015 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=deb9b102
7
8 services/postgresql.fc: Drop obsolete distro_gentoo block
9
10 Only some of the binaries in /usr/lib/postgresql-.../bin should be
11 marked postgresql_exec_t (e.g. pg_ctl), the others (e.g. psql) should
12 get a bin_t marking so they're user-accessible. refpolicy applies
13 correct labels since last year (commit 3738cf10), but this ifdef block
14 still overrides them on Gentoo.
15
16 policy/modules/services/postgresql.fc | 5 -----
17 1 file changed, 5 deletions(-)
18
19 diff --git a/policy/modules/services/postgresql.fc b/policy/modules/services/postgresql.fc
20 index 2a1b1a3..d3bc4bb 100644
21 --- a/policy/modules/services/postgresql.fc
22 +++ b/policy/modules/services/postgresql.fc
23 @@ -54,8 +54,3 @@ ifdef(`distro_redhat', `
24 /var/run/postgresql(/.*)? gen_context(system_u:object_r:postgresql_var_run_t,s0)
25
26 /var/run/postmaster.* gen_context(system_u:object_r:postgresql_var_run_t,s0)
27 -
28 -ifdef(`distro_gentoo',`
29 -/usr/lib/postgresql-.*/bin/.* -- gen_context(system_u:object_r:postgresql_exec_t,s0)
30 -')
31 -
Report Message
Find on MARC Find on Google Groups