From 92f6d7cf64260a7cb9c7391f0f1473d09cdae198 Mon Sep 17 00:00:00 2001
From: Jeremy Solt <jsolt@tresys.com>
Date: Mon, 30 Aug 2010 10:56:54 -0400
Subject: [PATCH] cyphesis patch from Dan Walsh

---
 policy/modules/services/cyphesis.te | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/policy/modules/services/cyphesis.te b/policy/modules/services/cyphesis.te
index 346f926ee..5b578b068 100644
--- a/policy/modules/services/cyphesis.te
+++ b/policy/modules/services/cyphesis.te
@@ -32,13 +32,14 @@ allow cyphesis_t self:unix_dgram_socket create_socket_perms;
 manage_files_pattern(cyphesis_t, cyphesis_log_t, cyphesis_log_t)
 logging_log_filetrans(cyphesis_t, cyphesis_log_t, file)
 
-# DAN > Does cyphesis really create a sock_file in /tmp?  Why?
+# DAN > Does cyphesis really create a sock_file in /tmp?	Why?
 allow cyphesis_t cyphesis_tmp_t:sock_file manage_sock_file_perms;
 files_tmp_filetrans(cyphesis_t, cyphesis_tmp_t, file)
 
+manage_dirs_pattern(cyphesis_t, cyphesis_var_run_t, cyphesis_var_run_t)
 manage_files_pattern(cyphesis_t, cyphesis_var_run_t, cyphesis_var_run_t)
 manage_sock_files_pattern(cyphesis_t, cyphesis_var_run_t, cyphesis_var_run_t)
-files_pid_filetrans(cyphesis_t, cyphesis_var_run_t, { file sock_file })
+files_pid_filetrans(cyphesis_t, cyphesis_var_run_t, { dir file sock_file })
 
 kernel_read_system_state(cyphesis_t)
 kernel_read_kernel_sysctls(cyphesis_t)