Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Jason Zaman <perfinion@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: config/appconfig-mls/, config/appconfig-mcs/, config/appconfig-standard/
Date: Sun, 30 Jan 2022 01:22:56
Message-Id: 1643505306.3a6f1fdc625af28d62c7906f4e8666a7ae8661dd.perfinion@gentoo
1 commit: 3a6f1fdc625af28d62c7906f4e8666a7ae8661dd
2 Author: Kenton Groombridge <me <AT> concord <DOT> sh>
3 AuthorDate: Tue Jan 18 01:17:44 2022 +0000
4 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
5 CommitDate: Sun Jan 30 01:15:06 2022 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=3a6f1fdc
7
8 lxc_contexts: add ro_file and sandbox_lxc_process contexts
9
10 Signed-off-by: Kenton Groombridge <me <AT> concord.sh>
11 Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>
12
13 config/appconfig-mcs/lxc_contexts | 2 ++
14 config/appconfig-mls/lxc_contexts | 2 ++
15 config/appconfig-standard/lxc_contexts | 2 ++
16 3 files changed, 6 insertions(+)
17
18 diff --git a/config/appconfig-mcs/lxc_contexts b/config/appconfig-mcs/lxc_contexts
19 index 659a0c7c..de397ed2 100644
20 --- a/config/appconfig-mcs/lxc_contexts
21 +++ b/config/appconfig-mcs/lxc_contexts
22 @@ -1,3 +1,5 @@
23 process = "system_u:system_r:container_t:s0"
24 content = "system_u:object_r:virt_var_lib_t:s0"
25 file = "system_u:object_r:container_file_t:s0"
26 +ro_file = "system_u:object_r:container_ro_file_t:s0"
27 +sandbox_lxc_process = "system_u:system_r:container_t:s0"
28
29 diff --git a/config/appconfig-mls/lxc_contexts b/config/appconfig-mls/lxc_contexts
30 index 659a0c7c..de397ed2 100644
31 --- a/config/appconfig-mls/lxc_contexts
32 +++ b/config/appconfig-mls/lxc_contexts
33 @@ -1,3 +1,5 @@
34 process = "system_u:system_r:container_t:s0"
35 content = "system_u:object_r:virt_var_lib_t:s0"
36 file = "system_u:object_r:container_file_t:s0"
37 +ro_file = "system_u:object_r:container_ro_file_t:s0"
38 +sandbox_lxc_process = "system_u:system_r:container_t:s0"
39
40 diff --git a/config/appconfig-standard/lxc_contexts b/config/appconfig-standard/lxc_contexts
41 index 2cf33ddb..f2d6ef9b 100644
42 --- a/config/appconfig-standard/lxc_contexts
43 +++ b/config/appconfig-standard/lxc_contexts
44 @@ -1,3 +1,5 @@
45 process = "system_u:system_r:container_t"
46 content = "system_u:object_r:virt_var_lib_t"
47 file = "system_u:object_r:container_file_t"
48 +ro_file = "system_u:object_r:container_ro_file_t:s0"
49 +sandbox_lxc_process = "system_u:system_r:container_t:s0"
Report Message
Find on MARC Find on Google Groups