| 1 |
commit: fa80a229d122a166c8185af0ff5c1feaeee08655 |
| 2 |
Author: Jason Zaman <jason <AT> perfinion <DOT> com> |
| 3 |
AuthorDate: Tue Jul 29 14:14:10 2014 +0000 |
| 4 |
Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> |
| 5 |
CommitDate: Thu Jul 31 15:24:47 2014 +0000 |
| 6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=fa80a229 |
| 7 |
|
| 8 |
silence portage sandbox a little |
| 9 |
|
| 10 |
--- |
| 11 |
policy/modules/contrib/portage.te | 3 +++ |
| 12 |
1 file changed, 3 insertions(+) |
| 13 |
|
| 14 |
diff --git a/policy/modules/contrib/portage.te b/policy/modules/contrib/portage.te |
| 15 |
index 579447c..14a7b04 100644 |
| 16 |
--- a/policy/modules/contrib/portage.te |
| 17 |
+++ b/policy/modules/contrib/portage.te |
| 18 |
@@ -469,6 +469,9 @@ gen_tunable(portage_mount_fs, false) |
| 19 |
filetrans_pattern(portage_sandbox_t, portage_ebuild_t, portage_srcrepo_t, dir, "git3-src") # git-r3.eclass |
| 20 |
filetrans_pattern(portage_sandbox_t, portage_ebuild_t, portage_srcrepo_t, dir, "svn-src") |
| 21 |
|
| 22 |
+ # install-xattr does listxattr() which throws a lot of this |
| 23 |
+ dontaudit portage_sandbox_t self:capability sys_admin; |
| 24 |
+ |
| 25 |
########################################## |
| 26 |
# |
| 27 |
# Portage eselect module domain |
Archives