From 57764cf1a886d59ed5ed251dda5e7d568ac749f8 Mon Sep 17 00:00:00 2001
From: Lukas Vrabec <lvrabec@redhat.com>
Date: Jan 09 2017 13:24:47 +0000
Subject:  Fixed virt.te policy due to broken cherry-picks from rawhide


---

diff --git a/policy-f24-contrib.patch b/policy-f24-contrib.patch
index 4497cb3..3466d1c 100644
--- a/policy-f24-contrib.patch
+++ b/policy-f24-contrib.patch
@@ -113888,7 +113888,7 @@ index facdee8..ee9e63e 100644
 +	domtrans_pattern($1,container_file_t, $2)
  ')
 diff --git a/virt.te b/virt.te
-index f03dcf5..4a5a6d4 100644
+index f03dcf5..01dfabf 100644
 --- a/virt.te
 +++ b/virt.te
 @@ -1,451 +1,402 @@
@@ -115798,8 +115798,8 @@ index f03dcf5..4a5a6d4 100644
 +dontaudit svirt_lxc_net_t self:capability2  block_suspend ;
 +allow svirt_lxc_net_t self:process { execstack execmem };
 +manage_chr_files_pattern(svirt_lxc_net_t, svirt_sandbox_file_t, svirt_sandbox_file_t)
++manage_blk_files_pattern(svirt_lxc_net_t, svirt_sandbox_file_t, svirt_sandbox_file_t)
 +kernel_load_module(svirt_lxc_net_t)
-+manage_blk_files_pattern(container_t, container_file_t, container_file_t)
 +
 +tunable_policy(`virt_sandbox_use_sys_admin',`
 +	allow svirt_lxc_net_t self:capability sys_admin;