RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux-refpolicy/policy
History
Antoine Tenart 49a0771dd3 systemd: allow systemd-getty-generator to read and write unallocated ttys 
Fixes:

avc:  denied  { read write } for  pid=40 comm="systemd-getty-g"
name="ttyS0" dev="devtmpfs" ino=612
scontext=system_u:system_r:systemd_generator_t
tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1

avc:  denied  { open } for  pid=40 comm="systemd-getty-g"
path="/dev/ttyS0" dev="devtmpfs" ino=612
scontext=system_u:system_r:systemd_generator_t
tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1

avc:  denied  { ioctl } for  pid=40 comm="systemd-getty-g"
path="/dev/ttyS0" dev="devtmpfs" ino=612 ioctlcmd=0x5401
scontext=system_u:system_r:systemd_generator_t
tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1

Signed-off-by: Antoine Tenart <antoine.tenart@bootlin.com>
 		2020-10-09 08:58:31 +02:00
..
flask define lockdown class and access 2020-05-08 19:18:52 +02:00
modules systemd: allow systemd-getty-generator to read and write unallocated ttys 2020-10-09 08:58:31 +02:00
support filesystem: Create a filesystem image concept. 2020-07-29 14:29:26 -04:00
constraints whitespace cleanup 2020-08-13 14:34:57 +02:00
context_defaults
global_booleans
global_tunables
mcs
mls
policy_capabilities Correct some misspellings 2020-06-05 15:38:43 +02:00
users