|
|
@@ -13,6 +13,7 @@ require {
|
|
|
type proc_t;
|
|
|
type zero_device_t;
|
|
|
type cert_t;
|
|
|
+ type porticron_t;
|
|
|
}
|
|
|
|
|
|
allow portage_fetch_t self:process execmem;
|
|
|
@@ -61,3 +62,5 @@ dev_getattr_fs(portage_sandbox_t)
|
|
|
fs_getattr_pstorefs(portage_sandbox_t)
|
|
|
fs_getattr_tracefs(portage_sandbox_t)
|
|
|
allow portage_sandbox_t zero_device_t:chr_file map;
|
|
|
+
|
|
|
+allow portage_fetch_t porticron_t:fd use;
|
