From 823d7e6d13738c135493b021fbfcf3383e8b18b8 Mon Sep 17 00:00:00 2001
From: Dan Walsh <dwalsh@redhat.com>
Date: Fri, 15 Jul 2011 10:24:27 -0400
Subject: [PATCH] Allow virt_lxc_t signal_perms

---
 policy/modules/services/virt.te | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/policy/modules/services/virt.te b/policy/modules/services/virt.te
index 14304d1c..7030be4b 100644
--- a/policy/modules/services/virt.te
+++ b/policy/modules/services/virt.te
@@ -732,7 +732,7 @@ optional_policy(`
 # virt_lxc local policy
 #
 allow virt_lxc_t self:capability { net_admin setpcap chown sys_admin };
-allow virt_lxc_t self:process { setsched getcap setcap };
+allow virt_lxc_t self:process { setsched getcap setcap signal_perms };
 allow virt_lxc_t self:fifo_file rw_fifo_file_perms;
 allow virt_lxc_t self:netlink_route_socket rw_netlink_socket_perms;
 allow virt_lxc_t self:unix_stream_socket create_stream_socket_perms;
-- 
2.47.2