Gentoo Archives: gentoo-commits

From:	Sven Vermeulen <swift@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/system/
Date:	Fri, 28 Nov 2014 10:04:18
Message-Id:	`1417004891.3f6c14f9b89350b60e83e5f7764b7a095df7b005.swift@gentoo`

1	commit: 3f6c14f9b89350b60e83e5f7764b7a095df7b005
2	Author: Jason Zaman <jason <AT> perfinion <DOT> com>
3	AuthorDate: Tue Nov 25 20:00:07 2014 +0000
4	Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org>
5	CommitDate: Wed Nov 26 12:28:11 2014 +0000
6	URL: http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=3f6c14f9
7
8	Introduce userdom_manage_user_tmp_chr_files interface
9
10	---
11	policy/modules/system/userdomain.if \| 20 ++++++++++++++++++++
12	1 file changed, 20 insertions(+)
13
14	diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if
15	index 16a95cc..eba23be 100644
16	--- a/policy/modules/system/userdomain.if
17	+++ b/policy/modules/system/userdomain.if
18	@@ -3630,3 +3630,23 @@ interface(`userdom_manage_all_user_home_content',`
19	manage_fifo_files_pattern($1, user_home_content_type, user_home_content_type)
20	manage_sock_files_pattern($1, user_home_content_type, user_home_content_type)
21	')
22	+
23	+########################################
24	+## <summary>
25	+## Create, read, write, and delete user
26	+## temporary character files.
27	+## </summary>
28	+## <param name="domain">
29	+## <summary>
30	+## Domain allowed access.
31	+## </summary>
32	+## </param>
33	+#
34	+interface(`userdom_manage_user_tmp_chr_files',`
35	+ gen_require(`
36	+ type user_tmp_t;
37	+ ')
38	+
39	+ manage_chr_files_pattern($1, user_tmp_t, user_tmp_t)
40	+ files_search_tmp($1)
41	+')