From fd728556357ff0f1707b75af73dd19de052022f1 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Mon, 3 Jul 2017 15:54:31 +0000
Subject: [PATCH] Also need to add unlink so it can remove the old non
 compressed file.

---
 .../files/selinux/mirrorlist-logrotate.mod    | Bin 1204 -> 1218 bytes
 .../files/selinux/mirrorlist-logrotate.pp     | Bin 1220 -> 1234 bytes
 .../files/selinux/mirrorlist-logrotate.te     |   4 ++--
 3 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.mod b/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.mod
index 49ca37b8d4e43431ea086fcd61a1d83687dd1a47..017ad3d338e9335ec1688ae5d55e1d9060f8cea7 100644
GIT binary patch
delta 55
zcmdnOd5CkuURD+c1_qXiht&AkKnw;3hSI#8%)IQ4FOD%X@=w0VEIiqsk!SKbrUpj-
J&Hl`(i~yW64=exx

delta 40
ycmV+@0N4M*3A722y#)gR000A#!X~ly#sL8blfeNKlh6W;0SA*I0vEG%15N=C;tY2H

diff --git a/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.pp b/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.pp
index f4be1215e3c3fb0c4c15381f8d1c4c5495c70e9b..64e047ef03697aaab9a6b3cf3c1a435e56281151 100644
GIT binary patch
delta 55
zcmX@Yd5LqvSymPX1_qXim(=*!Knw;3hSI#8%)IQ4KaMdn@=t!qEIiqtk!SKfrUpj-
J&GF2si~y|?54->X

delta 41
xcmcb_d4zMqSypBS1_tJdm((`1F&<-NWS@MIQF!tLrXEK2$%ahgn_HOu7y$}@3<>}M

diff --git a/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.te b/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.te
index 1028deb976..f464c2cb47 100644
--- a/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.te
+++ b/roles/mirrormanager/mirrorlist_proxy/files/selinux/mirrorlist-logrotate.te
@@ -3,10 +3,10 @@ module mirrorlist-logrotate 1.0;
 require {
 	type logrotate_t;
 	type svirt_sandbox_file_t;
-	class file { setattr create write };
+	class file { setattr create write unlink };
 	class dir { write add_name remove_name };
 }
 
 #============= logrotate_t ==============
 allow logrotate_t svirt_sandbox_file_t:dir { add_name remove_name write };
-allow logrotate_t svirt_sandbox_file_t:file { setattr create write };
+allow logrotate_t svirt_sandbox_file_t:file { setattr create write unlink };