add file_contexts entries for root filesystem
It may be useful to generate an ext4 image of the root filesystem instead of using a ramdisk. Whitelist entries in file_contexts to support selinux labeling a root filesystem image. Change-Id: I91a38d0aee4408c46cbfe5dc5e6eda198572e90f
This commit is contained in:
parent
e884872655
commit
92b9aa0eef
@ -1,9 +1,31 @@
|
|||||||
###########################################
|
###########################################
|
||||||
# Root
|
# Root
|
||||||
#
|
/ u:object_r:rootfs:s0
|
||||||
# Nothing required since it is initramfs and implicitly labeled
|
|
||||||
# by genfscon rootfs in ocontexts.
|
# Data files
|
||||||
#
|
/adb_keys
|
||||||
|
/default.prop u:object_r:rootfs:s0
|
||||||
|
/fstab\..* u:object_r:rootfs:s0
|
||||||
|
/init\..* u:object_r:rootfs:s0
|
||||||
|
/res(/.*)? u:object_r:rootfs:s0
|
||||||
|
/ueventd\..* u:object_r:rootfs:s0
|
||||||
|
|
||||||
|
# Executables
|
||||||
|
/charger u:object_r:rootfs:s0
|
||||||
|
/init u:object_r:rootfs:s0
|
||||||
|
/sbin(/.*)? u:object_r:rootfs:s0
|
||||||
|
|
||||||
|
# Empty directories
|
||||||
|
/lost\+found u:object_r:rootfs:s0
|
||||||
|
/proc u:object_r:rootfs:s0
|
||||||
|
/sys u:object_r:rootfs:s0
|
||||||
|
|
||||||
|
# SELinux policy files
|
||||||
|
/file_contexts u:object_r:rootfs:s0
|
||||||
|
/property_contexts u:object_r:rootfs:s0
|
||||||
|
/seapp_contexts u:object_r:rootfs:s0
|
||||||
|
/sepolicy u:object_r:rootfs:s0
|
||||||
|
|
||||||
##########################
|
##########################
|
||||||
# Devices
|
# Devices
|
||||||
#
|
#
|
||||||
|
Loading…
Reference in New Issue
Block a user