From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Tue, 23 Aug 2011 15:36:44 +0200
Subject: [refpolicy] [PATCH v2 0/11] Portage-related updates
Message-ID: <20110823133643.GA857@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Replies to this e-mail will contain a set of Portage-related updates, many
of these have been presented earlier (think layman support, emerge-webrsync,
running Portage from cron, ...) but needed additional improvements (or even
rewrites), hence the v2.

In short, the patch set contains:

 1  Introduce portage_dontaudit_use_fds
 2  Use portage_dontaudit_use_fds from load_policy_t
 3  Introduce rc_exec_t for /sbin/rc (instead of initrc_exec_t) for Gentoo
 4  Allow gcc-config to call /sbin/rc (no transition)
 5  Allow Gentoo's integrated run_init_t to call /sbin/rc (no transition)
 6  Allow sysadm_t to call /sbin/rc (no transition)
 7  Make portage_fetch_t a full application domain (instead of application type)
 8  Introduce portage_search_conf_dirs and portage_read_tmp_files
 9  Enhance gpg_t with portage_search_conf_dirs and portage_read_tmp_files
10  Allow cron to execute portage commands (incl. transition)
11  Allow portage to call GnuPG

Wkr,
	Sven Vermeulen