Enable NetworkManager and dhclient to use initramfs-configured DHCP c…

…onnection

Need to allow NetworkManager_t to read&delete tmpfs_t files and also
allow dhcpc_t to map NetworkManager_var_run_t files so that
NetworkManager and dhclient can use initramfs-configured DHCP connection.

Signed-off-by: Naoki Tanaka <[email protected]>

policy/modules/contrib/networkmanager.if

@@ -338,6 +338,7 @@ interface(`networkmanager_manage_pid_files',`
 	files_search_pids($1)
 	manage_dirs_pattern($1, NetworkManager_var_run_t, NetworkManager_var_run_t)
 	manage_files_pattern($1, NetworkManager_var_run_t, NetworkManager_var_run_t)
+	allow $1 NetworkManager_var_run_t:file map;
 ')
 
 ########################################

policy/modules/contrib/networkmanager.te

@@ -276,6 +276,9 @@ userdom_read_home_certs(NetworkManager_t)
 userdom_read_user_home_content_files(NetworkManager_t)
 userdom_dgram_send(NetworkManager_t)
 
+fs_read_tmpfs_files(NetworkManager_t)
+fs_delete_tmpfs_files(NetworkManager_t)
+
 tunable_policy(`use_nfs_home_dirs',`
     fs_read_nfs_files(NetworkManager_t)
 ')