rdelaage
/
postgresql
mirror of https://git.postgresql.org/git/postgresql.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
postgresql/contrib/sepgsql/sql
History
Joe Conway 4f66c93f61 Update sepgsql to add mandatory access control for TRUNCATE 
Use SELinux "db_table: { truncate }" to check if permission is granted to
TRUNCATE. Update example SELinux policy to grant needed permission for
TRUNCATE. Add new regression test to demonstrate a positive and negative
cases. Test will only be run if the loaded SELinux policy has the
"db_table: { truncate }" permission. Makes use of recent commit which added
object TRUNCATE hook. Patch by Yuli Khodorkovskiy with minor
editorialization by me. Not back-patched because the object TRUNCATE hook
was not.

Author: Yuli Khodorkovskiy
Reviewed-by: Joe Conway
Discussion: https://postgr.es/m/CAFL5wJcomybj1Xdw7qWmPJRpGuFukKgNrDb6uVBaCMgYS9dkaA%40mail.gmail.com
 		2019-11-23 10:46:44 -05:00
..
alter.sql Remove WITH OIDS support, change oid catalog column visibility. 2018-11-20 16:00:17 -08:00
ddl.sql Remove WITH OIDS support, change oid catalog column visibility. 2018-11-20 16:00:17 -08:00
dml.sql Fix whitespace 2017-04-10 11:18:15 -04:00
label.sql Make sepgsql regression tests robust vs. collation differences 2017-04-09 15:59:02 -07:00
misc.sql Add partitioned table support to sepgsql 2017-04-09 14:01:58 -07:00
truncate.sql Update sepgsql to add mandatory access control for TRUNCATE 2019-11-23 10:46:44 -05:00