# # USF sensor HAL SELinux type enforcements. # # Allow reading of sensor registry persist files. allow hal_sensors_default persist_file:dir search; allow hal_sensors_default mnt_vendor_file:dir search; r_dir_file(hal_sensors_default, persist_sensor_reg_file) # Allow creation and writing of sensor registry data files. allow hal_sensors_default sensor_reg_data_file:dir rw_dir_perms; allow hal_sensors_default sensor_reg_data_file:file create_file_perms; # Allow access to the AoC communication driver. allow hal_sensors_default aoc_device:chr_file rw_file_perms; # Allow access to the AoC clock and kernel boot time sys FS node. This is needed # to synchronize the AP and AoC clock timestamps. allow hal_sensors_default sysfs_aoc_boottime:file rw_file_perms; # Allow create thread to watch AOC's device. allow hal_sensors_default device:dir r_dir_perms;