[gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/contrib/

Jason Zaman Thu, 17 Dec 2015 10:57:48 -0800

commit:     9ff0f255c3db718232e734ce131b92beec85f876
Author:     Jason Zaman <jason <AT> perfinion <DOT> com>
AuthorDate: Mon Nov 23 15:23:32 2015 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Thu Dec 17 16:24:55 2015 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=9ff0f255


portage: allow portage to rw all MLS levels

 policy/modules/contrib/portage.te | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/policy/modules/contrib/portage.te 
b/policy/modules/contrib/portage.te
index 2f62eb6..19bd8c8 100644
--- a/policy/modules/contrib/portage.te
+++ b/policy/modules/contrib/portage.te
@@ -449,6 +449,11 @@ gen_tunable(portage_enable_test, false)
        corecmd_relabel_bin_files(portage_t)
        corecmd_relabel_bin_lnk_files(portage_t)
 
+       mls_file_read_all_levels(portage_t)
+       mls_file_write_all_levels(portage_t)
+       mls_file_upgrade(portage_t)
+       mls_file_downgrade(portage_t)
+
        auth_use_nsswitch(portage_t)
 
        # Support cgroup FEATURES

[gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/contrib/

Reply via email to