summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: aea30fa)
raw | patch | inline | side by side (parent: aea30fa)
| author | Vishal Mahaveer <vishalm@ti.com> | |
| Thu, 23 Jun 2016 16:35:05 +0000 (12:35 -0400) | ||
| committer | Praneeth Bajjuri <praneeth@ti.com> | |
| Tue, 19 Jul 2016 05:42:23 +0000 (00:42 -0500) |
selinux updates for configFS
Change-Id: If9bfeef4ec8b2ef3293bbb2fedb777cb9839b3f4
Signed-off-by: Vishal Mahaveer <vishalm@ti.com>
Signed-off-by: Praneeth Bajjuri <praneeth@ti.com>
Change-Id: If9bfeef4ec8b2ef3293bbb2fedb777cb9839b3f4
Signed-off-by: Vishal Mahaveer <vishalm@ti.com>
Signed-off-by: Praneeth Bajjuri <praneeth@ti.com>
| sepolicy/file.te | [new file with mode: 0644] | patch | blob |
| sepolicy/genfs_contexts | [new file with mode: 0644] | patch | blob |
| sepolicy/init.te | patch | blob | history |
diff --git a/sepolicy/file.te b/sepolicy/file.te
--- /dev/null
+++ b/sepolicy/file.te
@@ -0,0 +1,2 @@
+# /config
+type configfs, fs_type;
diff --git a/sepolicy/genfs_contexts b/sepolicy/genfs_contexts
--- /dev/null
+++ b/sepolicy/genfs_contexts
@@ -0,0 +1 @@
+genfscon configfs / u:object_r:configfs:s0
diff --git a/sepolicy/init.te b/sepolicy/init.te
index 1c88dbc5c784ea669bd7bbf4a068897a192d5215..b0822c60c5473930b654f6283367c85ab8c0d033 100644 (file)
--- a/sepolicy/init.te
+++ b/sepolicy/init.te
allow init self:capability sys_module;
#Create symlinks for storage
allow init tmpfs:lnk_file create_file_perms;
+
+# /config
+allow init configfs:dir create_dir_perms;
+allow init configfs:file w_file_perms;
+allow init configfs:lnk_file create;