On Fri, 2004-06-25 at 00:11, Russell Coker wrote:
On Fri, 25 Jun 2004 02:49, Tom London <selinux(a)comcast.net>
wrote:
> A previous posting indicated that /u?dev/microcode should be labeled as
> system_u:object_r:cpu_device_t.
>
> Is this still needed? Added to file_contexts/types.fc?
Yes it's still needed. If it's not yet in the fedora policy then it soon will
be.
Current file_contexts/types.fc already has the following entry:
/u?dev/cpu/.* -c system_u:object_r:cpu_device_t
And ls -Z /dev/cpu/0/microcode does show the right context.
--
Stephen Smalley <sds(a)epoch.ncsc.mil>
National Security Agency