Add map permission for postgresql_t to postgresql_tmp_t files.

Signed-off-by: Jason Zaman <jason@perfinion.com>
author: Alexander Miroshnichenko <alexminder@gmail.com> 2019-01-23 18:00:25 +0300
committer: Jason Zaman <jason@perfinion.com> 2019-02-10 12:11:25 +0800
commit: f93a15f4a51b94550f7bca624431c3290c719bf1 (patch)
tree: dffc0f2c4201c9414cfc1e2770da067e1d67179e
parent: Add new interface fs_rmw_hugetlbfs_files. (diff)
download: hardened-refpolicy-f93a15f4a51b94550f7bca624431c3290c719bf1.tar.gz
hardened-refpolicy-f93a15f4a51b94550f7bca624431c3290c719bf1.tar.bz2
hardened-refpolicy-f93a15f4a51b94550f7bca624431c3290c719bf1.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/policy/modules/services/postgresql.te b/policy/modules/services/postgresql.te
index 7d56e01a..09824a8b 100644
--- a/policy/modules/services/postgresql.te
+++ b/policy/modules/services/postgresql.te
@@ -290,6 +290,7 @@ files_lock_filetrans(postgresql_t, postgresql_lock_t, file)
 manage_files_pattern(postgresql_t, postgresql_log_t, postgresql_log_t)
 logging_log_filetrans(postgresql_t, postgresql_log_t, { file dir })
 
+allow postgresql_t postgresql_tmp_t:file map;
 manage_dirs_pattern(postgresql_t, postgresql_tmp_t, postgresql_tmp_t)
 manage_files_pattern(postgresql_t, postgresql_tmp_t, postgresql_tmp_t)
 manage_lnk_files_pattern(postgresql_t, postgresql_tmp_t, postgresql_tmp_t)
author	Alexander Miroshnichenko <alexminder@gmail.com>	2019-01-23 18:00:25 +0300
committer	Jason Zaman <jason@perfinion.com>	2019-02-10 12:11:25 +0800
commit	f93a15f4a51b94550f7bca624431c3290c719bf1 (patch)
tree	dffc0f2c4201c9414cfc1e2770da067e1d67179e
parent	Add new interface fs_rmw_hugetlbfs_files. (diff)
download	hardened-refpolicy-f93a15f4a51b94550f7bca624431c3290c719bf1.tar.gz hardened-refpolicy-f93a15f4a51b94550f7bca624431c3290c719bf1.tar.bz2 hardened-refpolicy-f93a15f4a51b94550f7bca624431c3290c719bf1.zip