From 179eb23bb725e40b53bbd5e63026abd0655f25ac Mon Sep 17 00:00:00 2001
From: Dominick Grift <dominick.grift@defensec.nl>
Date: Wed, 18 Dec 2024 13:03:20 +0100
Subject: clean up dev.unconfined

---
 src/dev/termdev/serialtermdev.cil | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'src/dev/termdev/serialtermdev.cil')

diff --git a/src/dev/termdev/serialtermdev.cil b/src/dev/termdev/serialtermdev.cil
index 510ea76..059e9ef 100644
--- a/src/dev/termdev/serialtermdev.cil
+++ b/src/dev/termdev/serialtermdev.cil
@@ -99,6 +99,10 @@
 
     (allow typeattr serialtermdev.typeattr (chr_file (not (audit_access execmod))))))
 
+(in termdev.unconfined
+
+    (call .serialtermdev.unconfined.type (typeattr)))
+
 (in after serialtermdev.appendinherited_all_chr_files
     (allowx ARG1 typeattr IOCTLCONSOLE_NOT_TIOCLINUX)
     (allowx ARG1 typeattr IOCTLTTY_NOT_TIOCSTI)
-- 
cgit v1.2.3