Signed-off-by: Jason Zaman <jason@xxxxxxxxxxxxx> --- policy/modules/system/userdomain.if | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if index e7117976..5221bd13 100644 --- a/policy/modules/system/userdomain.if +++ b/policy/modules/system/userdomain.if @@ -2491,6 +2491,35 @@ interface(`userdom_user_home_content_filetrans',` files_search_home($1) ') +######################################## +## <summary> +## Automatically use the user_cert_t label for selected resources +## created in a users home directory +## </summary> +## <param name="domain"> +## <summary> +## Domain allowed access +## </summary> +## </param> +## <param name="class"> +## <summary> +## Resource type(s) for which the label should be used +## </summary> +## </param> +## <param name="filename" optional="true"> +## <summary> +## Name of the resource that is being created +## </summary> +## </param> +# +interface(`userdom_user_home_dir_filetrans_user_cert',` + gen_require(` + type user_cert_t; + ') + + userdom_user_home_dir_filetrans($1, user_cert_t, $2, $3) +') + ######################################## ## <summary> ## Create objects in a user home directory -- 2.19.2
