From 882a23474f5a43cdcfba6aa61a8f9acd4d8de213 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Franti=C5=A1ek=20Dvo=C5=99=C3=A1k?= <valtri@civ.zcu.cz>
Date: Thu, 18 Sep 2014 23:13:13 +0200
Subject: [PATCH] Polishing policy.

---
 rocci_server.te | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/rocci_server.te b/rocci_server.te
index 61f9ec6..3236818 100644
--- a/rocci_server.te
+++ b/rocci_server.te
@@ -14,6 +14,7 @@ require {
 	type sysfs_t;
 	type var_log_t;
 	type man_t;
+
 	class capability2 block_suspend;
 	class dir { open read search };
 	class file { execute execute_no_trans getattr open read write };
@@ -40,7 +41,8 @@ allow passenger_t self:process { getsession signull };
 allow passenger_t self:tcp_socket listen;
 allow passenger_t var_log_t:lnk_file read;
 
-# passenger_native_support.so
+# compiling and using passenger_native_support.so
+# (not needed for rOCCI-server package in Fedora/EPEL)
 allow passenger_t passenger_var_run_t:file execute;
 
 # not audited rules :-(
-- 
1.8.2.3