# ecryptfs does not support xattr HOME_DIR/\.ecryptfs(/.*)? gen_context(system_u:object_r:ecryptfs_t,s0) HOME_DIR/\.Private(/.*)? gen_context(system_u:object_r:ecryptfs_t,s0) /dev/hugepages -d gen_context(system_u:object_r:hugetlbfs_t,s0) /dev/hugepages(/.*)? <> /dev/shm -d gen_context(system_u:object_r:tmpfs_t,s0-mls_systemhigh) /dev/shm/.* <> /dev/oracleasm(/.*)? gen_context(system_u:object_r:oracleasmfs_t,s0) /usr/lib/udev/devices/hugepages -d gen_context(system_u:object_r:hugetlbfs_t,s0) /usr/lib/udev/devices/hugepages/.* <> /usr/lib/udev/devices/shm -d gen_context(system_u:object_r:tmpfs_t,s0) /usr/lib/udev/devices/shm/.* <> /run/user/%{USERID}/gvfs -d gen_context(system_u:object_r:fusefs_t,s0) /run/user/%{USERID}/gvfs/.* <> # for systemd systems: # /sys/fs/bpf -d gen_context(system_u:object_r:bpf_t,s0) /sys/fs/bpf/.* <> /sys/fs/cgroup -d gen_context(system_u:object_r:cgroup_t,s0) /sys/fs/cgroup/.* <> /sys/fs/pstore -d gen_context(system_u:object_r:pstore_t,s0) /sys/fs/pstore/.* <> /sys/firmware/efi/efivars -d gen_context(system_u:object_r:efivarfs_t,s0) /sys/firmware/efi/efivars/.* <> /sys/kernel/tracing -d gen_context(system_u:object_r:tracefs_t,s0) /sys/kernel/tracing/.* <> /run/shm -d gen_context(system_u:object_r:tmpfs_t,s0) /run/shm/.* <>