From 11a0508edeaa33538abdb74bb5ba033742a77a07 Mon Sep 17 00:00:00 2001 From: cgzones Date: Fri, 6 Jan 2017 15:03:08 +0100 Subject: [PATCH] update terminal module * label content of /dev/pts/ correctly * remove deprecated interfaces --- policy/modules/kernel/terminal.fc | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/policy/modules/kernel/terminal.fc b/policy/modules/kernel/terminal.fc index 0ea25b653..256ad2962 100644 --- a/policy/modules/kernel/terminal.fc +++ b/policy/modules/kernel/terminal.fc @@ -14,7 +14,6 @@ /dev/ip2[^/]* -c gen_context(system_u:object_r:tty_device_t,s0) /dev/isdn.* -c gen_context(system_u:object_r:tty_device_t,s0) /dev/ptmx -c gen_context(system_u:object_r:ptmx_t,s0) -/dev/pts/ptmx -c gen_context(system_u:object_r:ptmx_t,s0) /dev/rfcomm[0-9]+ -c gen_context(system_u:object_r:tty_device_t,s0) /dev/slamr[0-9]+ -c gen_context(system_u:object_r:tty_device_t,s0) /dev/tty -c gen_context(system_u:object_r:devtty_t,s0) @@ -25,6 +24,8 @@ /dev/pty/.* -c gen_context(system_u:object_r:bsdpty_device_t,s0) /dev/pts -d gen_context(system_u:object_r:devpts_t,s0-mls_systemhigh) +/dev/pts/ptmx -c gen_context(system_u:object_r:devpts_t,s0) +/dev/pts/[0-9]+ -c gen_context(system_u:object_r:user_devpts_t,s0) /dev/tts/[^/]* -c gen_context(system_u:object_r:tty_device_t,s0) @@ -37,7 +38,7 @@ /dev/xvc[0-9]* -c gen_context(system_u:object_r:tty_device_t,s0) ifdef(`distro_gentoo',` -/dev/tts/[0-9]* -c gen_context(system_u:object_r:tty_device_t,s0) +/dev/tts/[0-9]+ -c gen_context(system_u:object_r:tty_device_t,s0) # used by init scripts to initally populate udev /dev /lib/udev/devices/console -c gen_context(system_u:object_r:console_device_t,s0)