Chris PeBenito 17de1b
# SELinux userland utilities
Chris PeBenito 17de1b
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
# /etc
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
/etc/selinux(/.*)?			gen_context(system_u:object_r:selinux_config_t,s0)
Chris PeBenito 17de1b
/etc/selinux/([^/]*/)?contexts(/.*)?	gen_context(system_u:object_r:default_context_t,s0)
Chris PeBenito 17de1b
/etc/selinux/([^/]*/)?contexts/files(/.*)? gen_context(system_u:object_r:file_context_t,s0)
Chris PeBenito e070dd
/etc/selinux/([^/]*/)?policy(/.*)?	gen_context(system_u:object_r:policy_config_t,mls_systemhigh)
Chris PeBenito a8671a
/etc/selinux/([^/]*/)?setrans\.conf --	gen_context(system_u:object_r:selinux_config_t,mls_systemhigh)
Chris PeBenito e070dd
/etc/selinux/([^/]*/)?seusers	--	gen_context(system_u:object_r:selinux_config_t,mls_systemhigh)
Chris PeBenito a8671a
/etc/selinux/([^/]*/)?modules/(active|tmp|previous)(/.*)? gen_context(system_u:object_r:semanage_store_t,s0)
Chris PeBenito a8671a
/etc/selinux/([^/]*/)?modules/semanage\.read\.LOCK -- gen_context(system_u:object_r:semanage_read_lock_t,s0)
Chris PeBenito a8671a
/etc/selinux/([^/]*/)?modules/semanage\.trans\.LOCK -- gen_context(system_u:object_r:semanage_trans_lock_t,s0)
Chris PeBenito e070dd
/etc/selinux/([^/]*/)?users(/.*)? --	gen_context(system_u:object_r:selinux_config_t,mls_systemhigh)
Chris PeBenito 17de1b
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
# /root
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
/root/\.default_contexts	-- 	gen_context(system_u:object_r:default_context_t,s0)
Chris PeBenito 17de1b
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
# /sbin
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
/sbin/load_policy		--	gen_context(system_u:object_r:load_policy_exec_t,s0)
Chris PeBenito 762d2c
/sbin/restorecon		--	gen_context(system_u:object_r:setfiles_exec_t,s0)
Chris PeBenito 5dbda5
/sbin/setfiles.*		--	gen_context(system_u:object_r:setfiles_exec_t,s0)
Chris PeBenito 17de1b
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
# /usr
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
/usr/bin/checkpolicy		--	gen_context(system_u:object_r:checkpolicy_exec_t,s0)
Chris PeBenito 17de1b
/usr/bin/newrole		--	gen_context(system_u:object_r:newrole_exec_t,s0)
Chris PeBenito 17de1b
Chris PeBenito 17de1b
/usr/lib(64)?/selinux(/.*)?		gen_context(system_u:object_r:policy_src_t,s0)
Chris PeBenito 17de1b
Chris PeBenito 17de1b
/usr/sbin/load_policy		--	gen_context(system_u:object_r:load_policy_exec_t,s0)
Chris PeBenito 17de1b
/usr/sbin/restorecond		--	gen_context(system_u:object_r:restorecond_exec_t,s0)
Chris PeBenito 17de1b
/usr/sbin/run_init		--	gen_context(system_u:object_r:run_init_exec_t,s0)
Chris PeBenito 17de1b
/usr/sbin/setfiles.*		--	gen_context(system_u:object_r:setfiles_exec_t,s0)
Chris PeBenito 17de1b
/usr/sbin/setsebool		--	gen_context(system_u:object_r:semanage_exec_t,s0)
Chris PeBenito 17de1b
/usr/sbin/semanage		--	gen_context(system_u:object_r:semanage_exec_t,s0)
Chris PeBenito 17de1b
/usr/sbin/semodule		--	gen_context(system_u:object_r:semanage_exec_t,s0)
Chris PeBenito 17de1b
Chris PeBenito 17de1b
#
Chris PeBenito 17de1b
# /var/run
Chris PeBenito 17de1b
#
Chris PeBenito 19ebf0
/var/run/restorecond\.pid	--	gen_context(system_u:object_r:restorecond_var_run_t,s0)