From f0eaed31be5b4a92ef73ab14d861209d131d3426 Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Feb 26 2007 17:23:52 +0000
Subject: Patch for misc fixes to bluetooth from Dan Walsh.


---

diff --git a/Changelog b/Changelog
index 32d2a27..256b41e 100644
--- a/Changelog
+++ b/Changelog
@@ -1,3 +1,4 @@
+- Patch for misc fixes to bluetooth from Dan Walsh.
 - Patch for misc fixes to kerberos from Dan Walsh.
 - Patch to start deprecating usercanread attribute from Ryan Bradetich.
 - Add dccp_socket object class which was added in kernel 2.6.20.
diff --git a/policy/modules/services/bluetooth.te b/policy/modules/services/bluetooth.te
index 7c8c52d..18c13c9 100644
--- a/policy/modules/services/bluetooth.te
+++ b/policy/modules/services/bluetooth.te
@@ -1,5 +1,5 @@
 
-policy_module(bluetooth,1.4.0)
+policy_module(bluetooth,1.4.1)
 
 ########################################
 #
@@ -41,7 +41,7 @@ files_pid_file(bluetooth_var_run_t)
 # Bluetooth services local policy
 #
 
-allow bluetooth_t self:capability { net_admin net_raw sys_tty_config ipc_lock };
+allow bluetooth_t self:capability { net_bind_service net_admin net_raw sys_tty_config ipc_lock };
 dontaudit bluetooth_t self:capability sys_tty_config;
 allow bluetooth_t self:process { getsched signal_perms };
 allow bluetooth_t self:fifo_file rw_fifo_file_perms;
@@ -98,6 +98,7 @@ dev_read_urand(bluetooth_t)
 
 fs_getattr_all_fs(bluetooth_t)
 fs_search_auto_mountpoints(bluetooth_t)
+fs_search_inotifyfs(bluetooth_t)
 
 term_dontaudit_use_console(bluetooth_t)
 #Handle bluetooth serial devices