| 1 |
commit: ef3895b29d224ba5c64e12242b5fb85fc1e9405d |
| 2 |
Author: Luis Ressel <aranea <AT> aixah <DOT> de> |
| 3 |
AuthorDate: Thu Oct 15 10:44:41 2015 +0000 |
| 4 |
Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> |
| 5 |
CommitDate: Sat Oct 17 16:47:50 2015 +0000 |
| 6 |
URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=ef3895b2 |
| 7 |
|
| 8 |
portage: Fix the gen_require of the portage_compile_domain interface |
| 9 |
|
| 10 |
The portage_compile_domain interface used portage_sandbox_t without |
| 11 |
requiring it. |
| 12 |
|
| 13 |
policy/modules/contrib/portage.if | 4 ++-- |
| 14 |
1 file changed, 2 insertions(+), 2 deletions(-) |
| 15 |
|
| 16 |
diff --git a/policy/modules/contrib/portage.if b/policy/modules/contrib/portage.if |
| 17 |
index c98a763..4652319 100644 |
| 18 |
--- a/policy/modules/contrib/portage.if |
| 19 |
+++ b/policy/modules/contrib/portage.if |
| 20 |
@@ -68,8 +68,8 @@ interface(`portage_run',` |
| 21 |
interface(`portage_compile_domain',` |
| 22 |
gen_require(` |
| 23 |
class dbus send_msg; |
| 24 |
- type portage_devpts_t, portage_log_t, portage_srcrepo_t, portage_tmp_t; |
| 25 |
- type portage_tmpfs_t; |
| 26 |
+ type portage_devpts_t, portage_log_t, portage_sandbox_t, portage_srcrepo_t; |
| 27 |
+ type portage_tmp_t, portage_tmpfs_t; |
| 28 |
') |
| 29 |
|
| 30 |
allow $1 self:capability { fowner fsetid mknod setgid setuid chown dac_override net_raw }; |
Archives