commit: bfbc6bd14be977d19cadd03be8e1ed57b9568496 Author: Jason Zaman <jason <AT> perfinion <DOT> com> AuthorDate: Sun Sep 10 12:49:14 2017 +0000 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> CommitDate: Sun Sep 10 12:49:14 2017 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=bfbc6bd1
Introduce userdom_map_user_tmpfs_files interface policy/modules/system/userdomain.if | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if index cc019898..88704b71 100644 --- a/policy/modules/system/userdomain.if +++ b/policy/modules/system/userdomain.if @@ -3212,6 +3212,24 @@ interface(`userdom_rw_user_tmpfs_files',` ######################################## ## <summary> +## Map user tmpfs files. +## </summary> +## <param name="domain"> +## <summary> +## Domain allowed access. +## </summary> +## </param> +# +interface(`userdom_map_user_tmpfs_files',` + gen_require(` + type user_tmpfs_t; + ') + + allow $1 user_tmpfs_t:file map; +') + +######################################## +## <summary> ## Delete user tmpfs files. ## </summary> ## <param name="domain">
