| b.liu | e958203 | 2025-04-17 19:18:16 +0800 | [diff] [blame^] | 1 | ;; -*- mode: CIL; fill-column: 79; indent-tabs-mode: nil; -*- |
| 2 | ;; SPDX-FileCopyrightText: © 2021 Dominick Grift <dominick.grift@defensec.nl> |
| 3 | ;; SPDX-License-Identifier: Unlicense |
| 4 | |
| 5 | (in .file |
| 6 | (call .ssl.obj_type_transition_conftmpfile (unconfined.subj_typeattr))) |
| 7 | |
| 8 | (in .ssl |
| 9 | |
| 10 | ;; |
| 11 | ;; Contexts |
| 12 | ;; |
| 13 | |
| 14 | (filecon |
| 15 | "/tmp/etc/ssl" |
| 16 | dir |
| 17 | conftmpfile_file_context) |
| 18 | (filecon |
| 19 | "/tmp/etc/ssl/.*" |
| 20 | any |
| 21 | conftmpfile_file_context) |
| 22 | |
| 23 | ;; |
| 24 | ;; Macros |
| 25 | ;; |
| 26 | |
| 27 | (macro obj_type_transition_conftmpfile ((type ARG1)) |
| 28 | (call .tmpfile.conftmpfile_obj_type_transition |
| 29 | (ARG1 conftmpfile dir "ssl"))) |
| 30 | |
| 31 | ;; |
| 32 | ;; Policy |
| 33 | ;; |
| 34 | |
| 35 | (blockinherit .tmpfile.conf.obj_template)) |
| 36 | |
| 37 | (in .ssl.read |
| 38 | |
| 39 | (call .ssl.read_conftmpfile_files (subj_typeattr)) |
| 40 | (call .ssl.search_conftmpfile_dirs (subj_typeattr))) |