Allow sepgsql regression tests to be run from a user homedir.

author Robert Haas <rhaas@postgresql.org>

Fri, 19 Aug 2011 15:51:10 +0000 (11:51 -0400)

committer Robert Haas <rhaas@postgresql.org>

Fri, 19 Aug 2011 15:53:12 +0000 (11:53 -0400)
author Robert Haas <rhaas@postgresql.org>
Fri, 19 Aug 2011 15:51:10 +0000 (11:51 -0400)
committer Robert Haas <rhaas@postgresql.org>
Fri, 19 Aug 2011 15:53:12 +0000 (11:53 -0400)
diff --git a/contrib/sepgsql/sepgsql-regtest.te b/contrib/sepgsql/sepgsql-regtest.te

index 3b1def75a5208739ee2197b6f919531c5b9fd884..a8fe2476a4fb37e7076f0aaa1ed3d7466e1bb472 100644 (file)
--- a/contrib/sepgsql/sepgsql-regtest.te
+++ b/contrib/sepgsql/sepgsql-regtest.te
@@ -1,4 +1,4 @@
-policy_module(sepgsql-regtest, 1.02)
+policy_module(sepgsql-regtest, 1.03)
  
  gen_require(`
         all_userspace_class_perms
@@ -24,6 +24,7 @@ postgresql_procedure_object(sepgsql_regtest_trusted_proc_exec_t)
  role sepgsql_regtest_dba_r;
  userdom_base_user_template(sepgsql_regtest_dba)
  userdom_manage_home_role(sepgsql_regtest_dba_r, sepgsql_regtest_dba_t)
+userdom_exec_user_home_content_files(sepgsql_regtest_dba_t)
  userdom_write_user_tmp_sockets(sepgsql_regtest_user_t)
  optional_policy(`
         postgresql_admin(sepgsql_regtest_dba_t, sepgsql_regtest_dba_r)
@@ -40,6 +41,7 @@ optional_policy(`
  role sepgsql_regtest_user_r;
  userdom_base_user_template(sepgsql_regtest_user)
  userdom_manage_home_role(sepgsql_regtest_user_r, sepgsql_regtest_user_t)
+userdom_exec_user_home_content_files(sepgsql_regtest_user_t)
  userdom_write_user_tmp_sockets(sepgsql_regtest_user_t)
  optional_policy(`
         postgresql_role(sepgsql_regtest_user_r, sepgsql_regtest_user_t)
author	Robert Haas <rhaas@postgresql.org>
	Fri, 19 Aug 2011 15:51:10 +0000 (11:51 -0400)
committer	Robert Haas <rhaas@postgresql.org>
	Fri, 19 Aug 2011 15:53:12 +0000 (11:53 -0400)