jacinto6evm: sepolicy: updates for configFS

selinux updates for configFS Change-Id: If9bfeef4ec8b2ef3293bbb2fedb777cb9839b3f4 Signed-off-by: Vishal Mahaveer <vishalm@ti.com>
author: Vishal Mahaveer <vishalm@ti.com> 2016-06-23 12:35:05 -0400
committer: Vishal Mahaveer <vishalm@ti.com> 2016-06-23 12:35:05 -0400
commit: 1ff27277f3bf42c81e2d3c398468fc2468d4471c (patch)
tree: f2b5e3a8209e9458beefea0faac9c45a4329b14d
parent: 8f26236a014b9c85a120842edc91f3d966c69ffb (diff)
download: jacinto6evm-1ff27277f3bf42c81e2d3c398468fc2468d4471c.tar.gz
3 files changed, 8 insertions, 0 deletions
diff --git a/sepolicy/file.te b/sepolicy/file.te
new file mode 100644
index 0000000..2d8644d
--- /dev/null
+++ b/sepolicy/file.te
@@ -0,0 +1,2 @@
+# /config
+type configfs, fs_type;
diff --git a/sepolicy/genfs_contexts b/sepolicy/genfs_contexts
new file mode 100644
index 0000000..50c7cd7
--- /dev/null
+++ b/sepolicy/genfs_contexts
@@ -0,0 +1 @@
+genfscon configfs / u:object_r:configfs:s0
diff --git a/sepolicy/init.te b/sepolicy/init.te
index 1c88dbc..b0822c6 100644
--- a/sepolicy/init.te
+++ b/sepolicy/init.te
@@ -2,3 +2,8 @@
 allow init self:capability sys_module;
 #Create symlinks for storage
 allow init tmpfs:lnk_file create_file_perms;
+
+# /config
+allow init configfs:dir create_dir_perms;
+allow init configfs:file w_file_perms;
+allow init configfs:lnk_file create;
author	Vishal Mahaveer <vishalm@ti.com>	2016-06-23 12:35:05 -0400
committer	Vishal Mahaveer <vishalm@ti.com>	2016-06-23 12:35:05 -0400
commit	1ff27277f3bf42c81e2d3c398468fc2468d4471c (patch)
tree	f2b5e3a8209e9458beefea0faac9c45a4329b14d
parent	8f26236a014b9c85a120842edc91f3d966c69ffb (diff)
download	jacinto6evm-1ff27277f3bf42c81e2d3c398468fc2468d4471c.tar.gz