From 16bd1d0e6d54a4597a23105b0b116b5430282f70 Mon Sep 17 00:00:00 2001
From: Miroslav Grepl <mgrepl@fedoraproject.org>
Date: Oct 02 2009 07:12:30 +0000
Subject: - dovecot needs setcap/getcap

- Fix up sssd policy

---

diff --git a/policy-20090521.patch b/policy-20090521.patch
index 513adef..1ff9d4c 100644
--- a/policy-20090521.patch
+++ b/policy-20090521.patch
@@ -2659,7 +2659,7 @@ diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/pol
  
 diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/dbus.if serefpolicy-3.6.12/policy/modules/services/dbus.if
 --- nsaserefpolicy/policy/modules/services/dbus.if	2009-06-25 10:19:44.000000000 +0200
-+++ serefpolicy-3.6.12/policy/modules/services/dbus.if	2009-10-02 08:17:37.000000000 +0200
++++ serefpolicy-3.6.12/policy/modules/services/dbus.if	2009-10-02 09:02:08.000000000 +0200
 @@ -176,6 +176,10 @@
  		xserver_use_xdm_fds($1_dbusd_t)
  		xserver_rw_xdm_pipes($1_dbusd_t)
@@ -2671,7 +2671,7 @@ diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/pol
  ')
  
  ########################################
-@@ -458,3 +462,26 @@
+@@ -458,3 +462,27 @@
  	allow $1 system_dbusd_t:tcp_socket { read write };
  	allow $1 system_dbusd_t:fd use;
  ')
@@ -2692,7 +2692,8 @@ diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/pol
 +                type system_dbusd_t, system_dbusd_var_run_t;
 +        ')
 +
-+	dontaudit $1 system_dbusd_var_run_t:dir manage_dir_perms;
++	dontaudit $1 system_dbusd_var_run_t:dir list_dir_perms;
++	dontaudit $1 system_dbusd_var_run_t:file read_file_perms;
 +	dontaudit $1 system_dbusd_var_run_t:sock_file rw_sock_file_perms;
 +        dontaudit $1 system_dbusd_t:unix_stream_socket connectto;
 +')