diff options
Diffstat (limited to 'policy/modules/kernel/filesystem.fc')
| -rw-r--r-- | policy/modules/kernel/filesystem.fc | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/policy/modules/kernel/filesystem.fc b/policy/modules/kernel/filesystem.fc new file mode 100644 index 00000000..cda5588e --- /dev/null +++ b/policy/modules/kernel/filesystem.fc @@ -0,0 +1,16 @@ +/cgroup -d gen_context(system_u:object_r:cgroup_t,s0) +/cgroup/.* <<none>> + +/dev/hugepages -d gen_context(system_u:object_r:hugetlbfs_t,s0) +/dev/hugepages(/.*)? <<none>> +/dev/shm -d gen_context(system_u:object_r:tmpfs_t,s0) +/dev/shm/.* <<none>> + +/lib/udev/devices/hugepages -d gen_context(system_u:object_r:hugetlbfs_t,s0) +/lib/udev/devices/hugepages/.* <<none>> +/lib/udev/devices/shm -d gen_context(system_u:object_r:tmpfs_t,s0) +/lib/udev/devices/shm/.* <<none>> + +# for systemd systems: +/sys/fs/cgroup -d gen_context(system_u:object_r:cgroup_t,s0) +/sys/fs/cgroup/.* <<none>> |