Created attachment 475274 [details, diff] net-misc/chrony-3.1.ebuild: Add "seccomp" USE flag The attached patch adds a "seccomp" USE flag to the chrony ebuild; if it's enabled, "--enable-scfilter" is passed to configure. The seccomp sandbox only becomes active if chronyd is started with the flag "-F 1", so this change is safe for existing systems.
Comment on attachment 475274 [details, diff] net-misc/chrony-3.1.ebuild: Add "seccomp" USE flag That's not enough. It needs sys-libs/libseccomp to pass the configure test and compile.
Added in 3.1-r1. Thanks.
Created attachment 475292 [details, diff] net-misc/chrony-3.1.ebuild: Add "seccomp" USE flag, v2 > That's not enough. It needs sys-libs/libseccomp to pass the configure test > and compile. Oh, of course. Thanks for the catch, and sorry for the sloppiness.