1 |
commit: 5eb14ed9bd5dba41fbcaee27c9ca156d47bd90b4 |
2 |
Author: Dominick Grift <dominick.grift <AT> gmail <DOT> com> |
3 |
AuthorDate: Sat Nov 9 09:44:44 2013 +0000 |
4 |
Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> |
5 |
CommitDate: Fri Dec 6 17:30:56 2013 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=5eb14ed9 |
7 |
|
8 |
userdomain: add userdom_delete_user_tmpfs_files() for pulseaudio clients |
9 |
|
10 |
Signed-off-by: Dominick Grift <dominick.grift <AT> gmail.com> |
11 |
|
12 |
--- |
13 |
policy/modules/system/userdomain.if | 19 +++++++++++++++++++ |
14 |
1 file changed, 19 insertions(+) |
15 |
|
16 |
diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if |
17 |
index be55820..dbe838c 100644 |
18 |
--- a/policy/modules/system/userdomain.if |
19 |
+++ b/policy/modules/system/userdomain.if |
20 |
@@ -2688,6 +2688,25 @@ interface(`userdom_tmp_filetrans_user_tmp',` |
21 |
|
22 |
######################################## |
23 |
## <summary> |
24 |
+## Delete user tmpfs files. |
25 |
+## </summary> |
26 |
+## <param name="domain"> |
27 |
+## <summary> |
28 |
+## Domain allowed access. |
29 |
+## </summary> |
30 |
+## </param> |
31 |
+# |
32 |
+interface(`userdom_delete_user_tmpfs_files',` |
33 |
+ gen_require(` |
34 |
+ type user_tmpfs_t; |
35 |
+ ') |
36 |
+ |
37 |
+ delete_files_pattern($1, user_tmpfs_t, user_tmpfs_t) |
38 |
+ fs_search_tmpfs($1) |
39 |
+') |
40 |
+ |
41 |
+######################################## |
42 |
+## <summary> |
43 |
## Read user tmpfs files. |
44 |
## </summary> |
45 |
## <param name="domain"> |