summaryrefslogtreecommitdiffstats
path: root/selinux/macloader.te
diff options
context:
space:
mode:
Diffstat (limited to 'selinux/macloader.te')
-rw-r--r--selinux/macloader.te11
1 files changed, 11 insertions, 0 deletions
diff --git a/selinux/macloader.te b/selinux/macloader.te
new file mode 100644
index 0000000..a3eb4a2
--- /dev/null
+++ b/selinux/macloader.te
@@ -0,0 +1,11 @@
+type macloader, domain;
+type macloader_exec, exec_type, file_type;
+init_daemon_domain(macloader);
+
+allow macloader efs_file:dir search;
+allow macloader efs_device_file:dir search;
+allow macloader wifi_data_file:file { read getattr open write setattr };
+allow macloader self:capability { dac_override chown fowner fsetid };
+allow macloader system_data_file:dir w_dir_perms;
+
+domain_trans(init, rootfs, macloader)
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-19 06:38:50 +0000