From 0a596401f11a483f54aaf3a2b601af5fd3fee5ce Mon Sep 17 00:00:00 2001
From: bauen1 <j2468h@gmail.com>
Date: Fri, 17 Apr 2020 20:42:18 +0200
Subject: [PATCH] logrotate.service sandbox required permissions

Signed-off-by: bauen1 <j2468h@gmail.com>
---
 policy/modules/kernel/files.te | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/policy/modules/kernel/files.te b/policy/modules/kernel/files.te
index a681ec51a..24eae3b4d 100644
--- a/policy/modules/kernel/files.te
+++ b/policy/modules/kernel/files.te
@@ -101,6 +101,10 @@ files_mountpoint(mnt_t)
 type modules_object_t;
 files_type(modules_object_t)
 
+optional_policy(`
+	init_mountpoint(modules_object_t)
+')
+
 type no_access_t;
 files_type(no_access_t)