commit: 75df5df7c2482cc1c9e1161dffd3d8388497ba6b
Author: Jason Zaman <jason <AT> perfinion <DOT> com>
AuthorDate: Sun Jun 24 09:56:09 2018 +0000
Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Mon Jun 25 05:31:59 2018 +0000
URL:
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=75df5df7
xdg: Introduce xdg_search_cache_dirs
policy/modules/system/xdg.if | 20 ++++++++++++++++++++
1 file changed, 20 insertions(+)
diff --git a/policy/modules/system/xdg.if b/policy/modules/system/xdg.if
index f59be0a0..e94d6720 100644
--- a/policy/modules/system/xdg.if
+++ b/policy/modules/system/xdg.if
@@ -63,6 +63,26 @@ interface(`xdg_data_content',`
userdom_user_home_content($1)
')
+########################################
+## <summary>
+## Search through the xdg cache home directories
+## </summary>
+## <param name="domain">
+## <summary>
+## Domain allowed access.
+## </summary>
+## </param>
+#
+interface(`xdg_search_cache_dirs',`
+ gen_require(`
+ type xdg_cache_t;
+ ')
+
+ search_dirs_pattern($1, xdg_cache_t, xdg_cache_t)
+
+ userdom_search_user_home_dirs($1)
+')
+
########################################
## <summary>
## Read the xdg cache home files
