From 67f4de27c98f8855706cabfba91b036ec8d385f4 Mon Sep 17 00:00:00 2001 From: John Turner Date: Thu, 21 Aug 2025 18:24:18 -0400 Subject: add userrun.cil --- src/file/runfile/meson.build | 2 +- src/file/runfile/userrunfile.cil | 32 ++++++++++++++++++++++++++++++++ 2 files changed, 33 insertions(+), 1 deletion(-) create mode 100644 src/file/runfile/userrunfile.cil diff --git a/src/file/runfile/meson.build b/src/file/runfile/meson.build index 4f172f8..d151d6c 100644 --- a/src/file/runfile/meson.build +++ b/src/file/runfile/meson.build @@ -1,2 +1,2 @@ -modules += files('runlockfile.cil', 'runuserfile.cil') +modules += files('runlockfile.cil', 'runuserfile.cil', 'userrunfile.cil') diff --git a/src/file/runfile/userrunfile.cil b/src/file/runfile/userrunfile.cil new file mode 100644 index 0000000..9dc65f9 --- /dev/null +++ b/src/file/runfile/userrunfile.cil @@ -0,0 +1,32 @@ +(in file.user + (block run + (macro type ((type ARG1)) + (typeattributeset typeattr ARG1)) + + (typeattribute typeattr) + + (call .file.user.type (typeattr)) + (call .file.run.type (typeattr)) + + (block base_template + (blockabstract base_template) + (blockinherit .file.user.base_template) + (call .file.user.run.type (file))) + + (block template + (blockabstract template) + (blockinherit .file.user.run.base_template) + (blockinherit .file.macro_template_files) + (blockinherit .file.macro_template_dirs) + (blockinherit .file.macro_template_sock_files)))) + +(block userrun + (macro file_type_transition_file ((type ARG1) (name ARG2)) + (call .runuser.file_type_transition (ARG1 file dir ARG2))) + + (blockinherit .file.user.run.template) + (filecon "/run/user/%{USERID}" dir file_context) + (filecon "/run/user/%{USERID}/.*" any file_context)) + +(in file.unconfined + (call .userrun.file_type_transition_file (typeattr "*"))) -- cgit v1.2.3