| b.liu | e958203 | 2025-04-17 19:18:16 +0800 | [diff] [blame^] | 1 | ;; -*- mode: CIL; fill-column: 79; indent-tabs-mode: nil; -*- |
| 2 | ;; SPDX-FileCopyrightText: © 2021 Dominick Grift <dominick.grift@defensec.nl> |
| 3 | ;; SPDX-License-Identifier: Unlicense |
| 4 | |
| 5 | (in .file |
| 6 | (call .www.rootfile_obj_type_transition_miscfile |
| 7 | (unconfined.subj_typeattr))) |
| 8 | |
| 9 | (block www |
| 10 | |
| 11 | ;; |
| 12 | ;; Contexts |
| 13 | ;; |
| 14 | |
| 15 | (filecon |
| 16 | "/www" |
| 17 | dir |
| 18 | miscfile_file_context) |
| 19 | (filecon |
| 20 | "/www/.*" |
| 21 | any |
| 22 | miscfile_file_context) |
| 23 | |
| 24 | ;; |
| 25 | ;; Macros |
| 26 | ;; |
| 27 | |
| 28 | (macro rootfile_obj_type_transition_miscfile ((type ARG1)) |
| 29 | (call .sys.rootfile_obj_type_transition |
| 30 | (ARG1 miscfile dir "www"))) |
| 31 | |
| 32 | ;; |
| 33 | ;; Policy |
| 34 | ;; |
| 35 | |
| 36 | (blockinherit file.misc.obj_template) |
| 37 | |
| 38 | (call .xattr.associate_filesystems (miscfile))) |