Blame - genfs_contexts - fp2-dev/platform/external/sepolicy

blob: 31b7e4f6441fc06b450b3a6580eb1ff1eb6199c9 [file] [log] [blame]

William Roberts	dc10723	2012-07-11 16:46:38 -0700	[diff] [blame]	1	# Label inodes with the fs label.
				2	genfscon rootfs / u:object_r:rootfs:s0
				3	# proc labeling can be further refined (longest matching prefix).
				4	genfscon proc / u:object_r:proc:s0
Robert Craig	1bf61c4	2014-01-07 14:41:47 -0500	[diff] [blame]	5	genfscon proc /net u:object_r:proc_net:s0
hqjiang	4c06d27	2012-07-19 11:07:04 -0700	[diff] [blame]	6	genfscon proc /net/xt_qtaguid/ctrl u:object_r:qtaguid_proc:s0
Nick Kralevich	f2c0118	2014-09-26 10:51:12 -0700	[diff] [blame]	7	genfscon proc /cpuinfo u:object_r:proc_cpuinfo:s0
Stephen Smalley	3dad7b6	2014-03-05 09:50:08 -0500	[diff] [blame]	8	genfscon proc /sysrq-trigger u:object_r:proc_sysrq:s0
Stephen Smalley	7adb999	2013-12-06 09:31:40 -0500	[diff] [blame]	9	genfscon proc /sys/fs/protected_hardlinks u:object_r:proc_security:s0
				10	genfscon proc /sys/fs/protected_symlinks u:object_r:proc_security:s0
				11	genfscon proc /sys/fs/suid_dumpable u:object_r:proc_security:s0
				12	genfscon proc /sys/kernel/core_pattern u:object_r:usermodehelper:s0
				13	genfscon proc /sys/kernel/dmesg_restrict u:object_r:proc_security:s0
				14	genfscon proc /sys/kernel/hotplug u:object_r:usermodehelper:s0
				15	genfscon proc /sys/kernel/kptr_restrict u:object_r:proc_security:s0
				16	genfscon proc /sys/kernel/modprobe u:object_r:usermodehelper:s0
				17	genfscon proc /sys/kernel/modules_disabled u:object_r:proc_security:s0
				18	genfscon proc /sys/kernel/poweroff_cmd u:object_r:usermodehelper:s0
				19	genfscon proc /sys/kernel/randomize_va_space u:object_r:proc_security:s0
				20	genfscon proc /sys/kernel/usermodehelper u:object_r:usermodehelper:s0
Robert Craig	529fcbe	2014-01-07 13:46:56 -0500	[diff] [blame]	21	genfscon proc /sys/net u:object_r:proc_net:s0
Stephen Smalley	e6a7b37	2013-12-09 13:24:25 -0500	[diff] [blame]	22	genfscon proc /sys/vm/mmap_min_addr u:object_r:proc_security:s0
William Roberts	dc10723	2012-07-11 16:46:38 -0700	[diff] [blame]	23	# selinuxfs booleans can be individually labeled.
				24	genfscon selinuxfs / u:object_r:selinuxfs:s0
				25	genfscon cgroup / u:object_r:cgroup:s0
				26	# sysfs labels can be set by userspace.
				27	genfscon sysfs / u:object_r:sysfs:s0
				28	genfscon inotifyfs / u:object_r:inotify:s0
Ed Heyl	e9c90bd	2014-07-14 23:29:21 -0700	[diff] [blame]	29	genfscon vfat / u:object_r:vfat:s0
William Roberts	dc10723	2012-07-11 16:46:38 -0700	[diff] [blame]	30	genfscon debugfs / u:object_r:debugfs:s0
Ed Heyl	e9c90bd	2014-07-14 23:29:21 -0700	[diff] [blame]	31	genfscon fuse / u:object_r:fuse:s0
jaejyn.shin	318e0c9	2014-04-10 13:32:54 +0900	[diff] [blame]	32	genfscon pstore / u:object_r:pstorefs:s0
Nick Kralevich	77cc055	2014-04-15 14:53:05 -0700	[diff] [blame]	33	genfscon functionfs / u:object_r:functionfs:s0
Nick Kralevich	5a5fb85	2014-06-07 07:31:31 -0700	[diff] [blame]	34	genfscon usbfs / u:object_r:usbfs:s0