diff --git a/policy-F16.patch b/policy-F16.patch index 39e0a72..ca71a31 100644 --- a/policy-F16.patch +++ b/policy-F16.patch @@ -53233,7 +53233,7 @@ index 2855a44..58bb459 100644 + allow $1 puppet_var_run_t:dir search_dir_perms; +') diff --git a/policy/modules/services/puppet.te b/policy/modules/services/puppet.te -index 64c5f95..e237da7 100644 +index 64c5f95..fa3c113 100644 --- a/policy/modules/services/puppet.te +++ b/policy/modules/services/puppet.te @@ -6,12 +6,19 @@ policy_module(puppet, 1.0.0) @@ -53462,7 +53462,7 @@ index 64c5f95..e237da7 100644 +allow puppetmaster_t puppet_tmp_t:dir relabel_dir_perms; kernel_dontaudit_search_kernel_sysctl(puppetmaster_t) -+`kernel_read_network_state(puppetmaster_t) ++kernel_read_network_state(puppetmaster_t) kernel_read_system_state(puppetmaster_t) kernel_read_crypto_sysctls(puppetmaster_t) +kernel_read_kernel_sysctls(puppetmaster_t)