aboutsummaryrefslogtreecommitdiff
path: root/contrib/sepgsql/sepgsql-regtest.te
diff options
context:
space:
mode:
Diffstat (limited to 'contrib/sepgsql/sepgsql-regtest.te')
-rw-r--r--contrib/sepgsql/sepgsql-regtest.te8
1 files changed, 8 insertions, 0 deletions
diff --git a/contrib/sepgsql/sepgsql-regtest.te b/contrib/sepgsql/sepgsql-regtest.te
index 5d9af1a0ddb..569c4da95b9 100644
--- a/contrib/sepgsql/sepgsql-regtest.te
+++ b/contrib/sepgsql/sepgsql-regtest.te
@@ -152,6 +152,14 @@ allow sepgsql_regtest_var_t sepgsql_regtest_var_table_t:db_tuple { select update
optional_policy(`
gen_require(`
+ class db_table { truncate };
+ ')
+
+ allow sepgsql_regtest_superuser_t sepgsql_regtest_foo_table_t:db_table { truncate };
+')
+
+optional_policy(`
+ gen_require(`
role unconfined_r;
')
postgresql_role(unconfined_r, sepgsql_regtest_foo_t)
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-08 06:28:05 +0000