diff options
Diffstat (limited to 'selinux/macloader.te')
-rw-r--r-- | selinux/macloader.te | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/selinux/macloader.te b/selinux/macloader.te new file mode 100644 index 0000000..a3eb4a2 --- /dev/null +++ b/selinux/macloader.te @@ -0,0 +1,11 @@ +type macloader, domain; +type macloader_exec, exec_type, file_type; +init_daemon_domain(macloader); + +allow macloader efs_file:dir search; +allow macloader efs_device_file:dir search; +allow macloader wifi_data_file:file { read getattr open write setattr }; +allow macloader self:capability { dac_override chown fowner fsetid }; +allow macloader system_data_file:dir w_dir_perms; + +domain_trans(init, rootfs, macloader) |