summaryrefslogtreecommitdiff
path: root/src/dev/nodedev/nullnodedev.cil
diff options
context:
space:
mode:
Diffstat (limited to 'src/dev/nodedev/nullnodedev.cil')
-rw-r--r--src/dev/nodedev/nullnodedev.cil13
1 files changed, 13 insertions, 0 deletions
diff --git a/src/dev/nodedev/nullnodedev.cil b/src/dev/nodedev/nullnodedev.cil
new file mode 100644
index 0000000..e6340a3
--- /dev/null
+++ b/src/dev/nodedev/nullnodedev.cil
@@ -0,0 +1,13 @@
+;; SPDX-FileCopyrightText: © 2023 Dominick Grift <dominick.grift@defensec.nl>
+;; SPDX-License-Identifier: Unlicense
+
+(sidcontext devnull (sys.id sys.role null.nodedev lowlevelrange))
+
+(block null
+
+ (filecon "/dev/full" char nodedev_context)
+ (filecon "/dev/null" char nodedev_context)
+
+ (blockinherit .nodedev.template)
+
+ (call .rbacsep.exempt.obj.type (nodedev)))
generated by cgit v1.2.3 (git 2.46.0) at 2025-09-20 21:27:27 +0000