diff options
Diffstat (limited to 'sec-policy/selinux-base/selinux-base-9999.ebuild')
-rw-r--r-- | sec-policy/selinux-base/selinux-base-9999.ebuild | 15 |
1 files changed, 6 insertions, 9 deletions
diff --git a/sec-policy/selinux-base/selinux-base-9999.ebuild b/sec-policy/selinux-base/selinux-base-9999.ebuild index 16ee9f2b2abb..5342853efec5 100644 --- a/sec-policy/selinux-base/selinux-base-9999.ebuild +++ b/sec-policy/selinux-base/selinux-base-9999.ebuild @@ -16,7 +16,7 @@ else KEYWORDS="~amd64 -arm ~arm64 ~mips ~x86" fi -IUSE="doc +open_perms +peer_perms systemd +ubac +unconfined" +IUSE="doc +unknown-perms systemd +ubac +unconfined" DESCRIPTION="Gentoo base policy for SELinux" HOMEPAGE="https://wiki.gentoo.org/wiki/Project:SELinux" @@ -48,14 +48,11 @@ src_configure() { # Update the SELinux refpolicy capabilities based on the users' USE flags. - if ! use peer_perms; then - sed -i -e '/network_peer_controls/d' \ - "${S}/refpolicy/policy/policy_capabilities" || die - fi - - if ! use open_perms; then - sed -i -e '/open_perms/d' \ - "${S}/refpolicy/policy/policy_capabilities" || die + if use unknown-perms; then + sed -i -e '/^UNK_PERMS/s/deny/allow/' "${S}/refpolicy/build.conf" \ + || die "Failed to allow Unknown Permissions Handling" + sed -i -e '/^UNK_PERMS/s/deny/allow/' "${S}/refpolicy/Makefile" \ + || die "Failed to allow Unknown Permissions Handling" fi if ! use ubac; then |