## CryFS and similar other tools which mount encrypted directories using FUSE.
########################################
##
## Role access for CryFS.
##
##
##
## Role allowed access.
##
##
##
##
## User domain for the role.
##
##
#
interface(`cryfs_role',`
gen_require(`
attribute_role cryfs_roles;
type cryfs_t, cryfs_exec_t;
')
########################################
#
# Declarations
#
roleattribute $1 cryfs_roles;
########################################
#
# Policy
#
domtrans_pattern($2, cryfs_exec_t, cryfs_t)
allow $2 cryfs_t:process signal_perms;
ps_process_pattern($2, cryfs_t)
')