diff options
| author | Boris Ranto <branto@redhat.com> | 2015-07-15 18:20:52 +0200 |
|---|---|---|
| committer | Boris Ranto <branto@redhat.com> | 2015-08-05 15:21:47 +0200 |
| commit | bed5703367c94c355c3aa64241130718c71884ea (patch) | |
| tree | db282499094f002be0400ef230becf82e4285722 /selinux | |
| parent | Update selinux policy (after local test). (diff) | |
| download | ceph-bed5703367c94c355c3aa64241130718c71884ea.tar.xz ceph-bed5703367c94c355c3aa64241130718c71884ea.zip | |
selinux: Allow setuid and setgid to ceph-mon and ceph-osd
Signed-off-by: Boris Ranto <branto@redhat.com>
Diffstat (limited to 'selinux')
| -rw-r--r-- | selinux/ceph.te | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/selinux/ceph.te b/selinux/ceph.te index fa1393e825e..5d3ad5a3851 100644 --- a/selinux/ceph.te +++ b/selinux/ceph.te @@ -31,6 +31,7 @@ files_pid_file(ceph_var_run_t) allow ceph_t self:process { signal_perms }; allow ceph_t self:fifo_file rw_fifo_file_perms; allow ceph_t self:unix_stream_socket create_stream_socket_perms; +allow ceph_t self:capability { setuid setgid }; manage_dirs_pattern(ceph_t, ceph_log_t, ceph_log_t) manage_files_pattern(ceph_t, ceph_log_t, ceph_log_t) |