From a5c3c7038554b5511a0572fcf8bb9f18462687a5 Mon Sep 17 00:00:00 2001 From: bauen1 Date: Fri, 24 Apr 2020 14:28:28 +0200 Subject: [PATCH] thunderbird: label files under /tmp Signed-off-by: bauen1 --- policy/modules/apps/thunderbird.te | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/policy/modules/apps/thunderbird.te b/policy/modules/apps/thunderbird.te index 7de51489b..af3c02ebd 100644 --- a/policy/modules/apps/thunderbird.te +++ b/policy/modules/apps/thunderbird.te @@ -15,6 +15,9 @@ role thunderbird_roles types thunderbird_t; type thunderbird_home_t; userdom_user_home_content(thunderbird_home_t) +type thunderbird_tmp_t; +userdom_user_tmp_file(thunderbird_tmp_t) + type thunderbird_tmpfs_t; userdom_user_tmpfs_file(thunderbird_tmpfs_t) @@ -42,6 +45,11 @@ manage_files_pattern(thunderbird_t, thunderbird_home_t, thunderbird_home_t) manage_lnk_files_pattern(thunderbird_t, thunderbird_home_t, thunderbird_home_t) userdom_user_home_dir_filetrans(thunderbird_t, thunderbird_home_t, dir, ".thunderbird") +manage_dirs_pattern(thunderbird_t, thunderbird_tmp_t, thunderbird_tmp_t) +manage_files_pattern(thunderbird_t, thunderbird_tmp_t, thunderbird_tmp_t) +manage_lnk_files_pattern(thunderbird_t, thunderbird_tmp_t, thunderbird_tmp_t) +files_tmp_filetrans(thunderbird_t, thunderbird_tmp_t, { dir file lnk_file }) + manage_files_pattern(thunderbird_t, thunderbird_tmpfs_t, thunderbird_tmpfs_t) manage_lnk_files_pattern(thunderbird_t, thunderbird_tmpfs_t, thunderbird_tmpfs_t) manage_fifo_files_pattern(thunderbird_t, thunderbird_tmpfs_t, thunderbird_tmpfs_t)