d6e1ef29cd
Move devtmpfs to devices module (remove from filesystem module) Make device_t a filesystem Add interface for associating types with device_t filesystem (dev_associate) Call dev_associate from dev_filetrans Allow all device nodes associate with device_t filesystem Remove dev_tmpfs_filetrans_dev from kernel_t Remove fs_associate_tmpfs(initctl_t) - redundant, it was in dev_filetrans, now in dev_associate Mounton interface, to allow the kernel to mounton device_t Signed-off-by: Jeremy Solt <jsolt@tresys.com>
28 lines
544 B
Plaintext
28 lines
544 B
Plaintext
policy_module(corecommands, 1.13.1)
|
|
|
|
########################################
|
|
#
|
|
# Declarations
|
|
#
|
|
|
|
#
|
|
# Types with the exec_type attribute are executable files.
|
|
#
|
|
attribute exec_type;
|
|
|
|
#
|
|
# bin_t is the type of files in the system bin/sbin directories.
|
|
#
|
|
type bin_t alias { ls_exec_t sbin_t };
|
|
corecmd_executable_file(bin_t)
|
|
dev_associate(bin_t) #For /dev/MAKEDEV
|
|
|
|
#
|
|
# shell_exec_t is the type of user shells such as /bin/bash.
|
|
#
|
|
type shell_exec_t;
|
|
corecmd_executable_file(shell_exec_t)
|
|
|
|
type chroot_exec_t;
|
|
corecmd_executable_file(chroot_exec_t)
|