diff options
Diffstat (limited to 'src/dev/stordev')
| -rw-r--r-- | src/dev/stordev/fusestordev.cil | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/src/dev/stordev/fusestordev.cil b/src/dev/stordev/fusestordev.cil index 2430c62..ea6f761 100644 --- a/src/dev/stordev/fusestordev.cil +++ b/src/dev/stordev/fusestordev.cil @@ -1,11 +1,13 @@ ;; SPDX-FileCopyrightText: M-BM-) 2025 Dominick Grift <dominick.grift@defensec.nl> ;; SPDX-License-Identifier: Unlicense -(block fuse - - (filecon "/dev/fuse" char stordev_context) +(block fuse (blockinherit .stordev.base_template) (blockinherit .stordev.macro_template_chr_files) + (filecon "/dev/fuse" char stordev_context) + (filecon "/sys/fs/fuse/connections" dir ()) + (filecon "/sys/fs/fuse/connections/.*" any ()) + (call .rbacsep.exempt.obj.type (stordev))) |