From 4766a54dd801733b3b56f103609163e52ad0b115 Mon Sep 17 00:00:00 2001
From: Xin Ouyang <Xin.Ouyang@windriver.com>
Date: Mon, 7 Jan 2013 17:50:00 +0800
Subject: refpolicy: add user_tty_device_t into customizable_types

Add user_tty_device_t as a customizable_type, so that restorecon -R
/dev will not complain about it or modify the security labels.

Signed-off-by: Xin Ouyang <Xin.Ouyang@windriver.com>
---
 recipes-security/refpolicy/files/customizable_types | 1 +
 recipes-security/refpolicy/refpolicy_common.inc     | 9 +++++++++
 2 files changed, 10 insertions(+)
 create mode 100644 recipes-security/refpolicy/files/customizable_types

diff --git a/recipes-security/refpolicy/files/customizable_types b/recipes-security/refpolicy/files/customizable_types
new file mode 100644
index 0000000..527d835
--- /dev/null
+++ b/recipes-security/refpolicy/files/customizable_types
@@ -0,0 +1 @@
+user_tty_device_t
diff --git a/recipes-security/refpolicy/refpolicy_common.inc b/recipes-security/refpolicy/refpolicy_common.inc
index bbbbfc3..cb72b21 100644
--- a/recipes-security/refpolicy/refpolicy_common.inc
+++ b/recipes-security/refpolicy/refpolicy_common.inc
@@ -1,8 +1,14 @@
+PRINC = "1"
+
 SECTION = "base"
 LICENSE = "GPLv2"
 
 LIC_FILES_CHKSUM = "file://${S}/COPYING;md5=393a5ca445f6965873eca0259a17f833"
 
+# Specific config files for Poky
+SRC_URI += "file://customizable_types \
+	   "
+
 S = "${WORKDIR}/refpolicy"
 
 FILES_${PN} = "${sysconfdir}/selinux/${POLICY_NAME}/ \
@@ -66,4 +72,7 @@ EOF
 	# Create policy store and build the policy
 	semodule -p ${D} -s ${POLICY_NAME} -n -B
 	rm -f ${D}${sysconfdir}/selinux/semanage.conf
+
+	cat ${WORKDIR}/customizable_types >> \
+		${D}${sysconfdir}/selinux/${POLICY_NAME}/contexts/customizable_types
 }
-- 
cgit v1.2.3-54-g00ecf