++##
++## Allow glusterd_t domain to use executable memory
++##
++##
++gen_tunable(gluster_use_execmem, false)
++
+########################################
+#
+# Declarations
@@ -33289,6 +33296,10 @@ index 0000000..d474c09
+ files_getattr_all_sockets(glusterd_t)
+')
+
++tunable_policy(`gluster_use_execmem',`
++ allow glusterd_t self:process { execmem };
++')
++
+optional_policy(`
+ ctdbd_domtrans(glusterd_t)
+ ctdbd_signal(glusterd_t)
diff --git a/selinux-policy.spec b/selinux-policy.spec
index 813880f..b41d49e 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -19,7 +19,7 @@
Summary: SELinux policy configuration
Name: selinux-policy
Version: 3.13.1
-Release: 260%{?dist}
+Release: 260.1%{?dist}
License: GPLv2+
Group: System Environment/Base
Source: serefpolicy-%{version}.tgz
@@ -690,6 +690,9 @@ exit 0
%endif
%changelog
+* Tue Jul 11 2017 Lukas Vrabec