From 172330f5b60d1e8952d16808c96e0c464f373905 Mon Sep 17 00:00:00 2001
From: Ralph Bean <rbean@redhat.com>
Date: Tue, 16 Dec 2014 18:32:22 +0000
Subject: [PATCH] Updates to the fi-collectd selinux module for value01.

---
 roles/collectd/base/files/selinux/fi-collectd.te | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/roles/collectd/base/files/selinux/fi-collectd.te b/roles/collectd/base/files/selinux/fi-collectd.te
index 54c43e177d..a93b6c83ab 100644
--- a/roles/collectd/base/files/selinux/fi-collectd.te
+++ b/roles/collectd/base/files/selinux/fi-collectd.te
@@ -1,5 +1,5 @@
 
-module fi-collectd 1.9.4;
+module fi-collectd 1.10.0;
 
 require {
     type shell_exec_t;
@@ -13,9 +13,12 @@ require {
     type sendmail_exec_t;
     type tmp_t;
     type var_run_t;
+    type anon_inodefs_t;
+    type initrc_t;
+
     class capability { kill setuid dac_read_search sys_ptrace setgid dac_override };
     class dir { getattr read };
-    class file { execute read getattr execute_no_trans ioctl open };
+    class file { execute read write getattr execute_no_trans ioctl open };
     class lnk_file read;
     class sock_file { read write getattr };
     class unix_stream_socket connectto;
@@ -34,3 +37,5 @@ allow collectd_t sendmail_exec_t:file { read getattr open execute execute_no_tra
 allow collectd_t shell_exec_t:file { read open execute };
 allow collectd_t tmp_t:dir read;
 allow collectd_t var_run_t:sock_file { read write getattr };
+allow collectd_t anon_inodefs_t:file { write read };
+allow collectd_t initrc_t:unix_stream_socket connectto;