From 65f3382953eb4b7060cf28f3c98e952236456807 Mon Sep 17 00:00:00 2001
From: Michal Schmidt <mschmidt@redhat.com>
Date: Nov 03 2016 15:24:49 +0000
Subject: Don't make the shell wrappers SELinux domain entry points


Transition to the confined domains later when executing the daemon
binaries themselves.

BZ: https://bugzilla.redhat.com/show_bug.cgi?id=1389570

---

diff --git a/icecream.fc b/icecream.fc
index 7566fcc..0cdcdda 100644
--- a/icecream.fc
+++ b/icecream.fc
@@ -1,7 +1,5 @@
 /usr/sbin/iceccd                           -- gen_context(system_u:object_r:iceccd_exec_t,s0)
-/usr/libexec/icecc/iceccd-wrapper          -- gen_context(system_u:object_r:iceccd_exec_t,s0)
 /usr/sbin/icecc-scheduler                  -- gen_context(system_u:object_r:icecc_scheduler_exec_t,s0)
-/usr/libexec/icecc/icecc-scheduler-wrapper -- gen_context(system_u:object_r:icecc_scheduler_exec_t,s0)
 /usr/bin/icecc-create-env                  -- gen_context(system_u:object_r:iceccd_createenv_exec_t,s0)
 /var/cache/icecream(/.*)?                     gen_context(system_u:object_r:iceccd_cache_t,s0)
 /var/run/icecc(/.*)?                          gen_context(system_u:object_r:iceccd_var_run_t,s0)
diff --git a/icecream.te b/icecream.te
index 49f439f..675e760 100644
--- a/icecream.te
+++ b/icecream.te
@@ -1,5 +1,5 @@
 
-policy_module(icecream,0.1.6)
+policy_module(icecream,0.1.7)
 
 ########################################
 #