From bd6826f0537845f826db50fc0b1ac65207f7d65d Mon Sep 17 00:00:00 2001
From: Trey Dockendorf <tdockendorf@osc.edu>
Date: Fri, 15 Nov 2019 17:00:01 -0500
Subject: [PATCH] Fix selinux policy

---
 packaging/ondemand-selinux.te | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/packaging/ondemand-selinux.te b/packaging/ondemand-selinux.te
index cc3c1384a0..674e37a46d 100644
--- a/packaging/ondemand-selinux.te
+++ b/packaging/ondemand-selinux.te
@@ -11,6 +11,7 @@ require {
   type sshd_key_t;
   type chkpwd_t;
   type initrc_var_run_t;
+  type user_home_dir_t;
   class chr_file { ioctl open read write };
   class fifo_file { create getattr ioctl open read setattr unlink write };
   class netlink_audit_socket { nlmsg_relay create write };
@@ -23,10 +24,10 @@ require {
 #============= httpd_t ==============
 
 # Allow management of home directories when they are local
-manage_dirs_pattern(httpd_t, user_home_dir_t, user_home_dir_t)
-manage_files_pattern(httpd_t, user_home_dir_t, user_home_dir_t)
-manage_dirs_pattern(httpd_sys_script_t, user_home_dir_t, user_home_dir_t)
-manage_files_pattern(httpd_sys_script_t, user_home_dir_t, user_home_dir_t)
+manage_dirs_pattern(httpd_t, user_home_dir_t, user_home_dir_t);
+manage_files_pattern(httpd_t, user_home_dir_t, user_home_dir_t);
+manage_dirs_pattern(httpd_sys_script_t, user_home_dir_t, user_home_dir_t);
+manage_files_pattern(httpd_sys_script_t, user_home_dir_t, user_home_dir_t);
 
 # PUN startup
 allow httpd_t chkpwd_t:process { noatsecure rlimitinh siginh };