a4534a76bb
This command should be run with the privs of the caller. Signed-off-by: Chris PeBenito <Christopher.PeBenito@microsoft.com>
29 lines
604 B
Plaintext
29 lines
604 B
Plaintext
policy_module(corecommands)
|
|
|
|
########################################
|
|
#
|
|
# Declarations
|
|
#
|
|
|
|
#
|
|
# Types with the exec_type attribute are executable files.
|
|
#
|
|
attribute exec_type;
|
|
|
|
#
|
|
# bin_t is the type of files in the system bin/sbin directories.
|
|
#
|
|
type bin_t alias { ls_exec_t sbin_t };
|
|
typealias bin_t alias { systemd_detect_virt_t systemd_run_exec_t };
|
|
corecmd_executable_file(bin_t)
|
|
dev_associate(bin_t) #For /dev/MAKEDEV
|
|
|
|
#
|
|
# shell_exec_t is the type of user shells such as /bin/bash.
|
|
#
|
|
type shell_exec_t;
|
|
corecmd_executable_file(shell_exec_t)
|
|
|
|
type chroot_exec_t;
|
|
corecmd_executable_file(chroot_exec_t)
|