Resolves #739708 - pki-selinux lacks rules in F16

git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2228 c9f7a03b-bd48-0410-a16d-cbbf54688b0b

2 files changed, 5 insertions, 1 deletions

diff --git a/pki/base/selinux/src/pki.if b/pki/base/selinux/src/pki.if
index cba0f91a..317fb22b 100644
--- a/pki/base/selinux/src/pki.if
+++ b/pki/base/selinux/src/pki.if
@@ -130,6 +130,7 @@ template(`pki_ca_template',`
         corecmd_search_bin($1_t)
 
 	dev_list_sysfs($1_t)
+        dev_read_sysfs($1_t)
 	dev_read_rand($1_t)
 	dev_read_urand($1_t)
 
@@ -196,6 +197,9 @@ template(`pki_ca_template',`
        #reverse proxy
        corenet_tcp_connect_dogtag_port($1_t)
 
+       #connect to ldap
+       corenet_tcp_connect_ldap_port($1_t)
+
 ')
 
 ########################################
diff --git a/pki/base/selinux/src/pki.te b/pki/base/selinux/src/pki.te
index 2261af4b..3d9a0483 100644
--- a/pki/base/selinux/src/pki.te
+++ b/pki/base/selinux/src/pki.te
@@ -1,4 +1,4 @@
-policy_module(pki,1.0.25)
+policy_module(pki,1.0.26)
 
 attribute pki_ca_config;
 attribute pki_ca_executable;