From e07b8a56b9ce87733024797018543c7faf7e6aa2 Mon Sep 17 00:00:00 2001
From: rpcraig <rpcraig@tycho.ncsc.mil>
Date: Mon, 13 Aug 2012 06:09:39 -0400
Subject: Trusted Execution Environment policy.

---
 tee.te | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 tee.te

(limited to 'tee.te')

diff --git a/tee.te b/tee.te
new file mode 100644
index 0000000..ce4e2b6
--- /dev/null
+++ b/tee.te
@@ -0,0 +1,13 @@
+##
+# trusted execution environment (tee) daemon
+#
+type tee, domain;
+type tee_exec, exec_type, file_type;
+type tee_device, dev_type;
+type tee_data_file, file_type, data_file_type;
+
+init_daemon_domain(tee)
+allow tee self:capability { dac_override };
+allow tee tee_device:chr_file rw_file_perms;
+allow tee tee_data_file:dir { getattr write add_name };
+allow tee tee_data_file:file create_file_perms;
-- 
cgit v1.2.3