From ba67a3430021f8c5d6d81dce169915c6b17ecdae Mon Sep 17 00:00:00 2001
From: Patrik Koncity <pkoncity@redhat.com>
Date: Fri, 26 Aug 2022 18:38:51 +0200
Subject: [PATCH] Update keylime selinux policy

Resolves: rhbz#2121058
---
 keylime.spec | 6 +++++-
 keylime.te   | 2 +-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/keylime.spec b/keylime.spec
index baa0895..e57db6c 100644
--- a/keylime.spec
+++ b/keylime.spec
@@ -8,7 +8,7 @@
 
 Name:    keylime
 Version: 6.4.2
-Release: 4%{?dist}
+Release: 5%{?dist}
 Summary: Open source TPM software for Bootstrapping and Maintaining Trust
 
 URL:            https://github.com/keylime/keylime
@@ -310,6 +310,10 @@ fi
 %license LICENSE
 
 %changelog
+* Fri Aug 26 2022 Patrik Koncity <pkoncity@redhat.com> - 6.4.2-5
+- Update keylime SELinux policy and removed duplicate rules
+- Resolves: rhbz#2121058
+
 * Fri Aug 26 2022 Patrik Koncity <pkoncity@redhat.com> - 6.4.2-4
 - Update keylime SELinux policy
 - Resolves: rhbz#2121058
diff --git a/keylime.te b/keylime.te
index 05517d4..4dc0808 100644
--- a/keylime.te
+++ b/keylime.te
@@ -58,6 +58,7 @@ miscfiles_read_generic_certs(keylime_domain)
 sysnet_read_config(keylime_domain)
 
 userdom_manage_user_tmp_dirs(keylime_domain)
+userdom_manage_user_tmp_files(keylime_domain)
 
 ########################################
 #
@@ -112,7 +113,6 @@ init_dontaudit_stream_connect(keylime_agent_t)
 kernel_read_all_proc(keylime_agent_t)
 
 userdom_dontaudit_search_user_home_dirs(keylime_agent_t)
-userdom_read_user_tmp_files(keylime_agent_t)
 
 auth_read_passwd(keylime_agent_t)