seinfo can be used to select types, and sebool is now supported.
This commit is contained in:
parent
2b47c3fc35
commit
dd31ddfd87
@ -3,11 +3,11 @@
|
|||||||
# user (string)
|
# user (string)
|
||||||
# seinfo (string)
|
# seinfo (string)
|
||||||
# name (string)
|
# name (string)
|
||||||
|
# sebool (string)
|
||||||
# isSystemServer=true can only be used once.
|
# isSystemServer=true can only be used once.
|
||||||
# An unspecified boolean defaults to false.
|
# An unspecified isSystemServer defaults to false.
|
||||||
# An unspecified string selector will match any value.
|
# An unspecified string selector will match any value.
|
||||||
# A user string selector that ends in * will perform a prefix match.
|
# A user string selector that ends in * will perform a prefix match.
|
||||||
# seinfo= is only used when looking up app process security contexts.
|
|
||||||
# All specified input selectors in an entry must match (i.e. logical AND).
|
# All specified input selectors in an entry must match (i.e. logical AND).
|
||||||
# Matching is case-insensitive.
|
# Matching is case-insensitive.
|
||||||
# Precedence rules:
|
# Precedence rules:
|
||||||
@ -17,6 +17,7 @@
|
|||||||
# (4) Longer user= prefix before shorter user= prefix.
|
# (4) Longer user= prefix before shorter user= prefix.
|
||||||
# (5) Specified seinfo= string before unspecified seinfo= string.
|
# (5) Specified seinfo= string before unspecified seinfo= string.
|
||||||
# (6) Specified name= string before unspecified name= string.
|
# (6) Specified name= string before unspecified name= string.
|
||||||
|
# (7) Specified sebool= string before unspecified sebool= string.
|
||||||
#
|
#
|
||||||
# Outputs:
|
# Outputs:
|
||||||
# domain (string)
|
# domain (string)
|
||||||
|
Loading…
Reference in New Issue
Block a user