Differential D10174 Diff 26166 autotests/folding/test.fc.fold

Changeset View

Standalone View

View Options

autotests/folding/test.fc.fold

  • This file was added.
1# Sample SELinux Labeling Policy File
2
3# Syntax of 'file_contexts' file and other SELinux configuration files:
4
5/usr/lib/.*/program/foo\.so -- user:role:type:s0:c0
6/.* system_u:object_r:default_t:s0
7/sys(/.*)? system_u:object_r:sysfs_t:s0
8/xen(/.*)? system_u:object_r:xen_image_t:s1
9/mnt(/[^/]*)? -d system_u:object_r:mnt_t:s1-5
10/mnt(/[^/]*)? -l system_u:object_r:mnt_t:s0.s2
11/tmp/.* <<none>>
12/root(/.*)? system_u:object_r:admin_home_t:s0
13/dev/[0-9].* -c system_u:object_r:usb_device_t:s0
14/run/.*\.*pid <<none>>
15/mnt/[^/]*/.* <<none>>
16/etc/[mg]dm(/.*)? system_u:object_r:xdm_etc_t:s5-s6:c0
17/dev/(misc/)?psaux -c system_u:object_r:mouse_device_t:s0-s3:c0.c5
18
19HOME_DIR/.+ system_u:object_r:user_home_t:s0
20HOME_DIR/((www)|(web)|(public_html))(/.+)? system_u:object_r:httpd_user_content_t:s0
21HOME_DIR/\.cache/google-chrome(/.*)? system_u:object_r:chrome_sandbox_home_t:s0
22
23/dev/(misc/)?rtc[0-9]* -c system_u:object_r:clock_device_t:s0-s2:c1
24/var/(db|adm)/sudo(/.*)? system_u:object_r:pam_var_run_t:s0
25/dev/pcd[0-3] -b system_u:object_r:removable_device_t:s0
26/etc/ppp(/.*)? -- system_u:object_r:pppd_etc_rw_t:s0
27/var/www(/.*)? system_u:object_r:httpd_sys_content_t:s0
28/usr/lib(.*/)?bin(/.*)? system_u:object_r:bin_t:s0
29/dev/shm/.* <<none>>
30/usr/lib/(sse2/)?hello-.*\.so.* -- system_u:object_r:textrel_shlib_t:s0
31/sbin/grub.* -- system_u:object_r:bootloader_exec_t:s0.s3
32/sbin/lilo.* -- system_u:object_r:bootloader_exec_t:s0
33/etc/group[-\+]? -- system_u:object_r:passwd_file_t:s0:c1-c5
34/etc/rc\.d/init\.d/mpd -- system_u:object_r:mpd_initrc_exec_t:s0
35
36
37# Syntax of *.fc files, from the SELinux reference policy:
38
39/run/sudo/ts/%{USERNAME} gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:pam_var_run_t,s0,c0<endfold id='1'>)</endfold id='1'>
40/etc/aiccu\.conf -- gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:aiccu_etc_t,s0-s2,c1.c5<endfold id='1'>)</endfold id='1'>
41HOME_DIR/\.mtpz-data -- gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:libmtp_home_t,s0<endfold id='1'>)</endfold id='1'>
42/var/log/mariadb(/.*)? gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:mysqld_log_t,s0<endfold id='1'>)</endfold id='1'>
43/dev/dasd[^/]* -b gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:fixed_disk_device_t,mls_systemhigh<endfold id='1'>)</endfold id='1'>
44/dev/dasd[^/]* -c gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:fixed_disk_device_t,mls_systemhigh<endfold id='1'>)</endfold id='1'>
45HOME_ROOT -d gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:home_root_t,s0-mls_systemhigh,c1<endfold id='1'>)</endfold id='1'>
46HOME_ROOT -l gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:home_root_t,s0<endfold id='1'>)</endfold id='1'>
47
48ifdef<beginfold id='1'>(</beginfold id='1'>`distro_debian',`
49 /run/shm -d gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:tmpfs_t,s0<endfold id='1'>)</endfold id='1'>
50 /run/shm/.* <<none>>
51'<endfold id='1'>)</endfold id='1'>
52ifdef<beginfold id='1'>(</beginfold id='1'>`distro_suse',`
53 /success -- gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:etc_runtime_t,s0<endfold id='1'>)</endfold id='1'>
54'<endfold id='1'>)</endfold id='1'>
55ifdef<beginfold id='1'>(</beginfold id='1'>`init_systemd',`
56 /run/tmpfiles\.d/kmod\.conf -- gen_context<beginfold id='1'>(</beginfold id='1'>system_u:object_r:kmod_tmpfiles_conf_t,s0<endfold id='1'>)</endfold id='1'>
57'<endfold id='1'>)</endfold id='1'>
58
59# Tests
60
61# Variables
62HOME_DIR/path
63HOME_ROOT/path
64/path/HOME_DIR/HOME_ROOT
65
66# Open brackets
67/hello(world
68/hello[wo
69
70/path[^0-8]+
71/path(hello|bye)
72/path.*a+b?
73/path\wa\Wa\sa\da\ba\Ba\(a
74/usr/hi\"esc\sesc\032esc\*3esds
75
76# Security contexts
77user:role
78user:role:
79user:role:type
80user:role:type:level_sensitivity
81user:role:type:level_sensitivity:level_category
82user:role:type:level_sensitivity:level_category:other:other
83
84<beginfold id='1'>(</beginfold id='1'>user:role:type,<endfold id='1'>)</endfold id='1'>
85<beginfold id='1'>(</beginfold id='1'>user:role:type,level_s,<endfold id='1'>)</endfold id='1'>
86<beginfold id='1'>(</beginfold id='1'>user:role:type,level_s,level_c<endfold id='1'>)</endfold id='1'>
87<beginfold id='1'>(</beginfold id='1'>user:role:type,level_s,level_c,other,other,other<endfold id='1'>)</endfold id='1'>
88<beginfold id='1'>(</beginfold id='1'>user:role:type:level_s:level_c,other,other<endfold id='1'>)</endfold id='1'>
89<beginfold id='1'>(</beginfold id='1'>user:role:type:level_s:level_c:other,other,other<endfold id='1'>)</endfold id='1'>
90
91us er:role:type:level_s:level_c
92user:ro le:type:level_s:level_c
93user:role:ty pe:level_s:level_c
94user:role:type:lev el_s:level_c
95user:role:type:level_s:lev el_c
96
97<beginfold id='1'>(</beginfold id='1'>u ser:role:type,level_s,level_c,other,other<endfold id='1'>)</endfold id='1'>
98<beginfold id='1'>(</beginfold id='1'>user:ro le:type,level_s,level_c,other,other<endfold id='1'>)</endfold id='1'>
99<beginfold id='1'>(</beginfold id='1'>user:role:ty pe,level_s,level_c,other,other<endfold id='1'>)</endfold id='1'>
100<beginfold id='1'>(</beginfold id='1'>user:role:type,le vel_s,level_c,other,other<endfold id='1'>)</endfold id='1'>
101<beginfold id='1'>(</beginfold id='1'>user:role:type,level_s,le vel_c,other,other<endfold id='1'>)</endfold id='1'>
102
103<beginfold id='1'>(</beginfold id='1'> user :role:type, level_s , level_c , other <endfold id='1'>)</endfold id='1'>
104<beginfold id='1'>(</beginfold id='1'> user:role:type, level_s , level_c , other <endfold id='1'>)</endfold id='1'>