|
|
@@ -1,4 +1,4 @@
|
|
|
-policy_module(portage_additional, 0.0.9)
|
|
|
+policy_module(portage_additional, 0.0.10)
|
|
|
|
|
|
require {
|
|
|
type portage_fetch_t;
|
|
|
@@ -22,7 +22,7 @@ allow portage_t dri_device_t:chr_file getattr;
|
|
|
allow portage_t portage_fetch_t:unix_stream_socket connectto;
|
|
|
|
|
|
allow portage_sandbox_t dri_device_t:chr_file getattr;
|
|
|
-
|
|
|
+allow portage_sandbox_t self:capability sys_ptrace;
|
|
|
|
|
|
corenet_tcp_bind_generic_node(portage_fetch_t)
|
|
|
files_list_boot(portage_fetch_t)
|
