1 files changed, 31 insertions, 0 deletions
diff --git a/recipes-security/refpolicy/refpolicy/0050-policy-modules-kernel-terminal-allow-loging-to-reset.patch b/recipes-security/refpolicy/refpolicy/0050-policy-modules-kernel-terminal-allow-loging-to-reset.patch
new file mode 100644
index 0000000..e15e57b
--- /dev/null
+++ b/recipes-security/refpolicy/refpolicy/0050-policy-modules-kernel-terminal-allow-loging-to-reset.patch
@@ -0,0 +1,31 @@
+From fb900b71d7e1fa5c3bd997e6deadcaae2b65b05a Mon Sep 17 00:00:00 2001
+From: Yi Zhao <yi.zhao@windriver.com>
+Date: Mon, 29 Jun 2020 14:27:02 +0800
+Subject: [PATCH] policy/modules/kernel/terminal: allow loging to reset tty
+ perms
+Upstream-Status: Inappropriate [embedded specific]
+Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
+---
+ policy/modules/kernel/terminal.if | 4 +---
+ 1 file changed, 1 insertion(+), 3 deletions(-)
+diff --git a/policy/modules/kernel/terminal.if b/policy/modules/kernel/terminal.if
+index 8f9578dbc..3821ab9b0 100644
+--- a/policy/modules/kernel/terminal.if
+++ b/policy/modules/kernel/terminal.if
+@@ -119,9 +119,7 @@ interface(`term_user_tty',`
+ 
+        # Debian login is from shadow utils and does not allow resetting the perms.
+        # have to fix this!
+-       ifdef(`distro_debian',`
+-               type_change $1 ttynode:chr_file $2;
+-       ')
+       type_change $1 ttynode:chr_file $2;
+ 
+        tunable_policy(`console_login',`
+                # When user logs in from /dev/console, relabel it
+-- 
+2.17.1

diff --git a/recipes-security/refpolicy/refpolicy/0050-policy-modules-kernel-terminal-allow-loging-to-reset.patch b/recipes-security/refpolicy/refpolicy/0050-policy-modules-kernel-terminal-allow-loging-to-reset.patch new file mode 100644 index 0000000..e15e57b --- /dev/null +++ b/recipes-security/refpolicy/refpolicy/0050-policy-modules-kernel-terminal-allow-loging-to-reset.patch
@@ -0,0 +1,31 @@
	1	From fb900b71d7e1fa5c3bd997e6deadcaae2b65b05a Mon Sep 17 00:00:00 2001
	2	From: Yi Zhao <yi.zhao@windriver.com>
	3	Date: Mon, 29 Jun 2020 14:27:02 +0800
	4	Subject: [PATCH] policy/modules/kernel/terminal: allow loging to reset tty
	5	perms
	6
	7	Upstream-Status: Inappropriate [embedded specific]
	8
	9	Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
	10	---
	11	policy/modules/kernel/terminal.if \| 4 +---
	12	1 file changed, 1 insertion(+), 3 deletions(-)
	13
	14	diff --git a/policy/modules/kernel/terminal.if b/policy/modules/kernel/terminal.if
	15	index 8f9578dbc..3821ab9b0 100644
	16	--- a/policy/modules/kernel/terminal.if
	17	+++ b/policy/modules/kernel/terminal.if
	18	@@ -119,9 +119,7 @@ interface(`term_user_tty',`
	19
	20	# Debian login is from shadow utils and does not allow resetting the perms.
	21	# have to fix this!
	22	- ifdef(`distro_debian',`
	23	- type_change $1 ttynode:chr_file $2;
	24	- ')
	25	+ type_change $1 ttynode:chr_file $2;
	26
	27	tunable_policy(`console_login',`
	28	# When user logs in from /dev/console, relabel it
	29	--
	30	2.17.1
	31