From: guido@trentalancia.net (Guido Trentalancia)
Date: Sun, 18 Dec 2016 21:01:56 +0100
Subject: [refpolicy] [PATCH v2] udev: manage tmpfs files and directories
In-Reply-To: <1482084808.2921.1.camel@trentalancia.net>
References: <1482084808.2921.1.camel@trentalancia.net>
Message-ID: <1482091316.3818.3.camel@trentalancia.net>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Update the udev module so that the udev domain can manage tmpfs files
and directories.

Thanks to Christian G?ttsche for pointing out that this only applies
to systems not using systemd (v2).

Signed-off-by: Guido Trentalancia <guido@trentalancia.net>
---
 policy/modules/system/udev.te |    3 +++
 1 file changed, 3 insertions(+)

--- a/policy/modules/system/udev.te	2016-09-10 18:09:13.359710389 +0200
+++ b/policy/modules/system/udev.te	2016-12-18 20:56:21.466748374 +0100
@@ -229,6 +231,9 @@ ifdef(`init_systemd',`
 	init_dgram_send(udev_t)
 
 	systemd_read_logind_pids(udev_t)
+',`
+	fs_manage_tmpfs_dirs(udev_t)
+	fs_manage_tmpfs_files(udev_t)
 ')
 
 optional_policy(`