From: pebenito@ieee.org (Chris PeBenito) Date: Tue, 12 Sep 2017 19:07:18 -0400 Subject: [refpolicy] [PATCH] portage: Remove nonsensical dontaudit of an allowed permission In-Reply-To: <20170912071637.22054-1-aranea@aixah.de> References: <20170912071637.22054-1-aranea@aixah.de> Message-ID: To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On 09/12/2017 03:16 AM, Luis Ressel via refpolicy wrote: > --- > portage.te | 1 - > 1 file changed, 1 deletion(-) > > diff --git a/portage.te b/portage.te > index 5e69d4c..79f2e3e 100644 > --- a/portage.te > +++ b/portage.te > @@ -170,7 +170,6 @@ rsync_entry_domtrans(portage_t, portage_fetch_t) > allow portage_fetch_t portage_t:fd use; > allow portage_fetch_t portage_t:fifo_file rw_fifo_file_perms; > allow portage_fetch_t portage_t:process sigchld; > -dontaudit portage_fetch_t portage_devpts_t:chr_file { read write }; > > # transition to sandbox for compiling > spec_domtrans_pattern(portage_t, portage_exec_t, portage_sandbox_t) Merged. -- Chris PeBenito