selinux-refpolicy/udica-templates/tmp_container.cil
Kenton Groombridge f95131dadf udica-templates: initial commit of udica templates
Signed-off-by: Kenton Groombridge <me@concord.sh>
2022-05-07 09:20:55 -04:00

20 lines
389 B
Plaintext

(block tmp_container
(blockabstract tmp_container)
(optional tmp_container_optional
(allow process tmpfile search_dir_perms)
(allow process tmpfile read_file_perms)
)
)
(block tmp_rw_container
(blockabstract tmp_rw_container)
(blockinherit tmp_container)
(optional tmp_rw_container_optional
(allow process tmpfile rw_dir_perms)
(allow process tmpfile rw_file_perms)
)
)