commit: cbb17a7e783f777c56f806584b008a6db411665f
Author: bauen1 <j2468h <AT> gmail <DOT> com>
AuthorDate: Sat Feb 1 20:53:36 2020 +0000
Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Sat Feb 15 07:32:05 2020 +0000
URL:
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=cbb17a7e
udev: run consolesetup
Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>
policy/modules/apps/loadkeys.te | 6 ++++++
policy/modules/system/udev.te | 6 ++++++
2 files changed, 12 insertions(+)
diff --git a/policy/modules/apps/loadkeys.te b/policy/modules/apps/loadkeys.te
index 1976e2cb..5c3b18d5 100644
--- a/policy/modules/apps/loadkeys.te
+++ b/policy/modules/apps/loadkeys.te
@@ -48,6 +48,12 @@ miscfiles_read_localization(loadkeys_t)
userdom_use_user_ttys(loadkeys_t)
userdom_list_user_home_content(loadkeys_t)
+ifdef(`distro_debian',`
+ optional_policy(`
+ consolesetup_read_conf(loadkeys_t)
+ ')
+')
+
optional_policy(`
keyboardd_read_pipes(loadkeys_t)
')
diff --git a/policy/modules/system/udev.te b/policy/modules/system/udev.te
index 71d98fc8..0371da7a 100644
--- a/policy/modules/system/udev.te
+++ b/policy/modules/system/udev.te
@@ -215,6 +215,12 @@ ifdef(`distro_debian',`
avahi_setattr_pid_dirs(udev_t)
avahi_filetrans_pid(udev_t, dir, "avahi-daemon")
')
+
+ optional_policy(`
+ consolesetup_exec_conf(udev_t)
+ consolesetup_manage_runtime(udev_t)
+ consolesetup_pid_filetrans_runtime(udev_t)
+ ')
')
ifdef(`distro_gentoo',`
