move "config" out of misc.cil

author: John Turner <jturner.usa@gmail.com> 2025-08-23 20:06:33 -0400
committer: John Turner <jturner.usa@gmail.com> 2025-08-23 20:08:10 -0400
commit: 649a8833e184a6cf3882549e15bfa7e9e725ff3f (patch)
tree: d1c567f15bad85a854ea53b12428b4db6438e186 /src
parent: 92141a30b8385b429a4c3d29faa3590d2ab67898 (diff)
download: selinux-policy-649a8833e184a6cf3882549e15bfa7e9e725ff3f.tar.gz
2 files changed, 5 insertions, 7 deletions
diff --git a/src/fs/noseclabelfs/confignoseclabelfs.cil b/src/fs/noseclabelfs/confignoseclabelfs.cil
index a0dde62..195cbb3 100644
--- a/src/fs/noseclabelfs/confignoseclabelfs.cil
+++ b/src/fs/noseclabelfs/confignoseclabelfs.cil
@@ -2,9 +2,12 @@
 ;; SPDX-License-Identifier: Unlicense
 
 (block config
-
+    
     (genfscon "configfs" "/" fs_context)
 
     (blockinherit .fs.macro_template_dirs)
     (blockinherit .fs.macro_template_fs)
-    (blockinherit .noseclabelfs.base_template))
+    (blockinherit .noseclabelfs.base_template)
+
+    (filecon "/sys/kernel/config" dir ())
+    (filecon "/sys/kernel/config/.*" any ()))
diff --git a/src/misc.cil b/src/misc.cil
index dbb8148..97db5a0 100644
--- a/src/misc.cil
+++ b/src/misc.cil
@@ -3,11 +3,6 @@
 
 (sidcontext init (sys.id sys.role sys.subj sys.lowlow)) ;; userspace_initial_context
 
-(in config
-
-    (filecon "/sys/kernel/config" dir ())
-    (filecon "/sys/kernel/config/.*" any ()))
-
 (in data
 
     (filecon "/opt" dir file_context)
author	John Turner <jturner.usa@gmail.com>	2025-08-23 20:06:33 -0400
committer	John Turner <jturner.usa@gmail.com>	2025-08-23 20:08:10 -0400
commit	649a8833e184a6cf3882549e15bfa7e9e725ff3f (patch)
tree	d1c567f15bad85a854ea53b12428b4db6438e186 /src
parent	92141a30b8385b429a4c3d29faa3590d2ab67898 (diff)
download	selinux-policy-649a8833e184a6cf3882549e15bfa7e9e725ff3f.tar.gz