From: cpebenito@tresys.com (Christopher J. PeBenito) Date: Tue, 3 Dec 2013 13:29:51 -0500 Subject: [refpolicy] [PATCH 03/39] userdomain: add userdom_delete_user_tmpfs_files() for pulseaudio clients In-Reply-To: <1383990320-3340-3-git-send-email-dominick.grift@gmail.com> References: <1383990320-3340-1-git-send-email-dominick.grift@gmail.com> <1383990320-3340-3-git-send-email-dominick.grift@gmail.com> Message-ID: <529E231F.1080601@tresys.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On 11/09/13 04:44, Dominick Grift wrote: > Signed-off-by: Dominick Grift > --- > policy/modules/system/userdomain.if | 19 +++++++++++++++++++ > 1 file changed, 19 insertions(+) > > diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if > index 9dc60c6..06d8db1 100644 > --- a/policy/modules/system/userdomain.if > +++ b/policy/modules/system/userdomain.if > @@ -2663,6 +2663,25 @@ interface(`userdom_tmp_filetrans_user_tmp',` > > ######################################## > ## > +## Delete user tmpfs files. > +## > +## > +## > +## Domain allowed access. > +## > +## > +# > +interface(`userdom_delete_user_tmpfs_files',` > + gen_require(` > + type user_tmpfs_t; > + ') > + > + delete_files_pattern($1, user_tmpfs_t, user_tmpfs_t) > + fs_search_tmpfs($1) > +') > + > +######################################## > +## > ## Read user tmpfs files. > ## > ## Merged. -- Chris PeBenito Tresys Technology, LLC www.tresys.com | oss.tresys.com