]> git.ipfire.org Git - thirdparty/systemd.git/commitdiff
projects / thirdparty / systemd.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 8b213bf)
homed: allow systemd-homed access to FIDO2 devices
authorGibeom Gwon <gb.gwon@stackframe.dev>
Mon, 12 Jul 2021 17:57:43 +0000 (02:57 +0900)
committerLuca Boccassi <luca.boccassi@gmail.com>
Mon, 12 Jul 2021 22:35:32 +0000 (23:35 +0100)
Add DeviceAllow= option for FIDO2 devices in systemd-homed.service.

units/systemd-homed.service.in patch | blob | blame | history

diff --git a/units/systemd-homed.service.in b/units/systemd-homed.service.in
index 678bbab65c464b145c8ba9210c4373e3ee2d376d..0576f84697423b4a9d2e7abeb154fffb25cf2521 100644 (file)
--- a/units/systemd-homed.service.in
+++ b/units/systemd-homed.service.in
@@ -20,6 +20,7 @@ CapabilityBoundingSet=CAP_SYS_ADMIN CAP_CHOWN CAP_DAC_OVERRIDE CAP_FOWNER CAP_FS
 DeviceAllow=/dev/loop-control rw
 DeviceAllow=/dev/mapper/control rw
 DeviceAllow=block-* rw
+DeviceAllow=char-hidraw rw
 ExecStart={{ROOTLIBEXECDIR}}/systemd-homed
 IPAddressDeny=any
 KillMode=mixed
Unnamed repository; edit this file 'description' to name the repository.