diff --git a/policy-f26-contrib.patch b/policy-f26-contrib.patch
index 20ebea2..b56963d 100644
--- a/policy-f26-contrib.patch
+++ b/policy-f26-contrib.patch
@@ -20891,7 +20891,7 @@ index b25b01d12..06895f39a 100644
  ')
 +
 diff --git a/ctdb.te b/ctdb.te
-index 001b502e6..73da04ae1 100644
+index 001b502e6..b264e198a 100644
 --- a/ctdb.te
 +++ b/ctdb.te
 @@ -24,6 +24,9 @@ files_tmp_file(ctdbd_tmp_t)
@@ -20909,9 +20909,10 @@ index 001b502e6..73da04ae1 100644
  #
  
 -allow ctdbd_t self:capability { chown ipc_lock net_admin net_raw sys_nice };
-+allow ctdbd_t self:capability { chown dac_override dac_read_search ipc_lock net_admin net_raw sys_nice };
+-allow ctdbd_t self:process { setpgid signal_perms setsched };
++allow ctdbd_t self:capability { chown dac_override dac_read_search ipc_lock net_admin net_raw sys_nice sys_resource };
 +allow ctdbd_t self:capability2 block_suspend;
- allow ctdbd_t self:process { setpgid signal_perms setsched };
++allow ctdbd_t self:process { setpgid setrlimit signal_perms setsched };
  allow ctdbd_t self:fifo_file rw_fifo_file_perms;
  allow ctdbd_t self:unix_stream_socket { accept connectto listen };
  allow ctdbd_t self:netlink_route_socket r_netlink_socket_perms;
@@ -23491,7 +23492,7 @@ index 62d22cb46..c0c2ed47d 100644
 +	manage_dirs_pattern($1, session_dbusd_tmp_t, session_dbusd_tmp_t)
  ')
 diff --git a/dbus.te b/dbus.te
-index c9998c80d..131d809ae 100644
+index c9998c80d..d7910970e 100644
 --- a/dbus.te
 +++ b/dbus.te
 @@ -4,17 +4,15 @@ gen_require(`
@@ -23640,7 +23641,7 @@ index c9998c80d..131d809ae 100644
 +init_domtrans_script(system_dbusd_t)
 +init_rw_stream_sockets(system_dbusd_t)
 +init_status(system_dbusd_t)
-+init_start_system(system_dbusd_t) # needed by dbus-broker
++init_start(system_dbusd_t) # needed by dbus-broker
  
  logging_send_audit_msgs(system_dbusd_t)
  logging_send_syslog_msg(system_dbusd_t)