From d4cc5cf3d201d69d00351930fc3b6a5380f7692a Mon Sep 17 00:00:00 2001
From: bauen1 <j2468h@gmail.com>
Date: Wed, 28 Aug 2019 10:46:22 +0200
Subject: [PATCH] fix: sudo can't determine default type for sysadm_r

---
 policy/modules/admin/sudo.if         | 2 +-
 policy/modules/system/selinuxutil.if | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/policy/modules/admin/sudo.if b/policy/modules/admin/sudo.if
index c1459364b..8299ceee2 100644
--- a/policy/modules/admin/sudo.if
+++ b/policy/modules/admin/sudo.if
@@ -129,7 +129,7 @@ template(`sudo_role_template',`
 
 	miscfiles_read_localization($1_sudo_t)
 
-	seutil_search_default_contexts($1_sudo_t)
+	seutil_read_default_contexts($1_sudo_t)
 	seutil_libselinux_linked($1_sudo_t)
 
 	userdom_spec_domtrans_all_users($1_sudo_t)
diff --git a/policy/modules/system/selinuxutil.if b/policy/modules/system/selinuxutil.if
index 20024993e..f4aa078b1 100644
--- a/policy/modules/system/selinuxutil.if
+++ b/policy/modules/system/selinuxutil.if
@@ -735,8 +735,7 @@ interface(`seutil_read_default_contexts',`
 	')
 
 	files_search_etc($1)
-	allow $1 selinux_config_t:dir search_dir_perms;
-	allow $1 default_context_t:dir list_dir_perms;
+	list_dirs_pattern($1, selinux_config_t, default_context_t)
 	read_files_pattern($1, default_context_t, default_context_t)
 ')