Add list_auto_mountpoints to all nfs blocks of apache

diff --git a/policy/modules/services/apache.te b/policy/modules/services/apache.te
index 9c0dab561c088ee3225c662b2419435fdf0165ab..b09a425cfbb1938eb8ea7c17f10c670345f4e5e9 100644 (file)
--- a/policy/modules/services/apache.te
+++ b/policy/modules/services/apache.te
@@ -611,11 +611,13 @@ tunable_policy(`httpd_tmp_exec && httpd_enable_cgi',`
 ')
 
 tunable_policy(`httpd_enable_homedirs && use_nfs_home_dirs',`
+        fs_list_auto_mountpoints(httpd_t)
        fs_read_nfs_files(httpd_t)
        fs_read_nfs_symlinks(httpd_t)
 ')
 
 tunable_policy(`httpd_use_nfs',`
+        fs_list_auto_mountpoints(httpd_t)
        fs_manage_nfs_dirs(httpd_t)
        fs_manage_nfs_files(httpd_t)
        fs_manage_nfs_symlinks(httpd_t)
@@ -975,6 +977,7 @@ tunable_policy(`httpd_enable_cgi && httpd_unified',`
 ')
 
 tunable_policy(`httpd_enable_homedirs && use_nfs_home_dirs',`
+        fs_list_auto_mountpoints(httpd_suexec_t)
        fs_read_nfs_files(httpd_suexec_t)
        fs_read_nfs_symlinks(httpd_suexec_t)
        fs_exec_nfs_files(httpd_suexec_t)
@@ -1073,11 +1076,13 @@ fs_read_iso9660_files(httpd_sys_script_t)
 fs_nfs_entry_type(httpd_sys_script_t)
 
 tunable_policy(`httpd_use_nfs',`
+        fs_list_auto_mountpoints(httpd_sys_script_t)
        fs_manage_nfs_dirs(httpd_sys_script_t)
        fs_manage_nfs_files(httpd_sys_script_t)
        fs_manage_nfs_symlinks(httpd_sys_script_t)
        fs_exec_nfs_files(httpd_sys_script_t)
 
+        fs_list_auto_mountpoints(httpd_suexec_t)
        fs_manage_nfs_dirs(httpd_suexec_t)
        fs_manage_nfs_files(httpd_suexec_t)
        fs_manage_nfs_symlinks(httpd_suexec_t)
@@ -1107,6 +1112,7 @@ tunable_policy(`httpd_enable_homedirs',`
 ')
 
 tunable_policy(`httpd_enable_homedirs && use_nfs_home_dirs',`
+        fs_list_auto_mountpoints(httpd_sys_script_t)
        fs_read_nfs_files(httpd_sys_script_t)
        fs_read_nfs_symlinks(httpd_sys_script_t)
 ')