[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/

Kenton Groombridge Wed, 02 Nov 2022 07:43:02 -0700

commit:     30e5ae18635c5685eb4bd6e40bdb7c8616207a42
Author:     Kenton Groombridge <me <AT> concord <DOT> sh>
AuthorDate: Sat Sep 24 16:35:52 2022 +0000
Commit:     Kenton Groombridge <concord <AT> gentoo <DOT> org>
CommitDate: Wed Nov  2 14:07:16 2022 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=30e5ae18


mount: allow mounting glusterfs volumes

Signed-off-by: Kenton Groombridge <me <AT> concord.sh>
Signed-off-by: Kenton Groombridge <concord <AT> gentoo.org>

 policy/modules/system/mount.te | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/policy/modules/system/mount.te b/policy/modules/system/mount.te
index 615f165fa..8b02840f0 100644
--- a/policy/modules/system/mount.te
+++ b/policy/modules/system/mount.te
@@ -198,6 +198,13 @@ optional_policy(`
        container_getattr_fs(mount_t)
 ')
 
+optional_policy(`
+       glusterfs_domtrans_daemon(mount_t)
+
+       # required for mount.glusterfs
+       corecmd_exec_shell(mount_t)
+')
+
 optional_policy(`
        modutils_read_module_deps(mount_t)
 ')

[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/

Reply via email to