add userrun.cil

2 files changed, 33 insertions, 1 deletions

diff --git a/src/file/runfile/meson.build b/src/file/runfile/meson.build
index 4f172f8..d151d6c 100644
--- a/src/file/runfile/meson.build
+++ b/src/file/runfile/meson.build
@@ -1,2 +1,2 @@
-modules += files('runlockfile.cil', 'runuserfile.cil')
+modules += files('runlockfile.cil', 'runuserfile.cil', 'userrunfile.cil')
 
diff --git a/src/file/runfile/userrunfile.cil b/src/file/runfile/userrunfile.cil
new file mode 100644
index 0000000..9dc65f9
--- /dev/null
+++ b/src/file/runfile/userrunfile.cil
@@ -0,0 +1,32 @@
+(in file.user
+    (block run
+        (macro type ((type ARG1))
+            (typeattributeset typeattr ARG1))
+
+        (typeattribute typeattr)
+
+        (call .file.user.type (typeattr))
+        (call .file.run.type (typeattr))
+
+        (block base_template
+            (blockabstract base_template)
+            (blockinherit .file.user.base_template)
+            (call .file.user.run.type (file)))
+
+        (block template
+            (blockabstract template)
+            (blockinherit .file.user.run.base_template)
+            (blockinherit .file.macro_template_files)
+            (blockinherit .file.macro_template_dirs)
+            (blockinherit .file.macro_template_sock_files))))
+
+(block userrun
+    (macro file_type_transition_file ((type ARG1) (name ARG2))
+        (call .runuser.file_type_transition (ARG1 file dir ARG2)))
+    
+    (blockinherit .file.user.run.template)
+    (filecon "/run/user/%{USERID}" dir file_context)
+    (filecon "/run/user/%{USERID}/.*" any file_context))
+
+(in file.unconfined
+    (call .userrun.file_type_transition_file (typeattr "*")))