Hi all, XDG_RUNTIME_DIR is usually /run/user/$UID but there is no way to label that in an fcontext file. It used to be /run/user/USER which is easy but not UID. What template keyword should be used for such an entry? UID? USERID? USERID is perhaps more obvious but has to be replaced before USER but that should be doable. https://github.com/SELinuxProject/selinux/blob/master/libsemanage/src/genhomedircon.c#L76 UID does not conflict with USER but this line exists in refpol which is problematic: contrib/fetchmail.fc:13:/var/mail/\.fetchmail-UIDL-cache -- gen_context(system_u:object_r:fetchmail_uidl_cache_t,s0) This could also be used for several fcontexts in kerberos. It stores the tickets in /tmp/krbcc_UID for example. If we choose a template name I can put together a patch to add it. -- Jason _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
