562742 – SELinux: services/postgresql.fc: Drop obsolete distro_gentoo block

Bug 562742 - SELinux: services/postgresql.fc: Drop obsolete distro_gentoo block

Summary: SELinux: services/postgresql.fc: Drop obsolete distro_gentoo block

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	SELinux (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	SE Linux Bugs

URL:
Whiteboard:	sec-policy r10
Keywords:

Depends on:
Blocks:

Reported:	2015-10-10 15:43 UTC by Mira Ressel
Modified:	2016-02-13 08:20 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Patch for SELinux policy (0001-services-postgresql.fc-Drop-obsolete-distro_gentoo-b.patch,1.19 KB, patch) 2015-10-10 15:45 UTC, Mira Ressel	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Mira Ressel 2015-10-10 15:43:07 UTC

Only some of the binaries in /usr/lib/postgresql-.../bin should be marked postgresql_exec_t (e.g. pg_ctl), the others (e.g. psql) should get a bin_t marking so they're user-accessible. refpolicy applies correct labels since last year (commit 3738cf10), but this ifdef block still overrides them on Gentoo.

Comment 1 Mira Ressel 2015-10-10 15:45:07 UTC

Created attachment 414276 [details, diff]
Patch for SELinux policy

Comment 2 Jason Zaman gentoo-dev

2015-10-10 16:11:38 UTC

applied in master, thanks

Comment 3 Jason Zaman gentoo-dev

2015-11-22 10:43:33 UTC

r10 released in ~arch

Comment 4 Jason Zaman gentoo-dev

2016-02-13 08:20:35 UTC

stable now