From 45b893abc9ea84e4c5a59a0519da944fd62097d419b35c05915fbb06277928b4 Mon Sep 17 00:00:00 2001
From: Reinhard Max <max@suse.com>
Date: Tue, 19 Feb 2019 16:10:28 +0000
Subject: [PATCH] - Change the persmissions for /var/run/postgresql to 1775, so
 that   the directory can only be used by users in the postgres group.   At
 the same time a patch will be added to the postgresqlXX   packages that adds
 a fallback to /tmp if socket creation in   /var/run/postgresql fails.

OBS-URL: https://build.opensuse.org/package/show/server:database:postgresql/postgresql?expand=0&rev=113
---
 postgresql-tmpfiles.conf | 2 +-
 postgresql.changes       | 9 +++++++++
 postgresql.spec          | 4 ++--
 3 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/postgresql-tmpfiles.conf b/postgresql-tmpfiles.conf
index 79f40f8..77b0953 100644
--- a/postgresql-tmpfiles.conf
+++ b/postgresql-tmpfiles.conf
@@ -1,3 +1,3 @@
 # For the PostgreSQL server's unix domain socket
-d /run/postgresql 1777 root root - -
+d /run/postgresql 1775 postgres postgres - -
 f /var/lib/pgsql/.bash_profile 0640 postgres postgres - /usr/share/postgresql/bash_profile
diff --git a/postgresql.changes b/postgresql.changes
index 4ceb394..b9ac542 100644
--- a/postgresql.changes
+++ b/postgresql.changes
@@ -1,3 +1,12 @@
+-------------------------------------------------------------------
+Tue Feb 19 16:05:22 UTC 2019 - Reinhard Max <max@suse.com>
+
+- Change the persmissions for /var/run/postgresql to 1775, so that
+  the directory can only be used by users in the postgres group.
+  At the same time a patch will be added to the postgresqlXX
+  packages that adds a fallback to /tmp if socket creation in
+  /var/run/postgresql fails.
+
 -------------------------------------------------------------------
 Thu Jan 31 13:23:56 UTC 2019 - Reinhard Max <max@suse.com>
 
diff --git a/postgresql.spec b/postgresql.spec
index b0546e5..28dcd2e 100644
--- a/postgresql.spec
+++ b/postgresql.spec
@@ -384,10 +384,10 @@ fi
 %_tmpfilesdir/postgresql.conf
 %_unitdir/
 /usr/share/postgresql/postgresql-script
-%ghost %dir %attr(1777,root,root) /run/postgresql
+%ghost %dir %attr(1775,root,root) /run/postgresql
 %else
 %config /etc/init.d/postgresql
-%dir %attr(1777,root,root) /var/run/postgresql
+%dir %attr(1775,root,root) /var/run/postgresql
 %endif
 
 %files test