From 85c221003fa8d1d3aa88b5b97c619be937f7980c Mon Sep 17 00:00:00 2001
From: Luca Miccini <lmiccini@redhat.com>
Date: Tue, 23 Dec 2025 12:23:48 +0100
Subject: [PATCH] Add policy for frr (set proper type for /var/run/frr)

---
 Makefile  | 2 +-
 os-frr.fc | 1 +
 os-frr.te | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)
 create mode 100644 os-frr.fc
 create mode 100644 os-frr.te

diff --git a/Makefile b/Makefile
index 4447f6a..93efd92 100644
--- a/Makefile
+++ b/Makefile
@@ -13,7 +13,7 @@ EXTRA_TARGETS?=os-ovs-el9
 endif # version 9
 endif # RHEL clones
 
-TARGETS?=os-ovs os-swift os-nova os-neutron os-mysql os-glance os-rsync os-rabbitmq os-keepalived os-keystone os-haproxy os-ipxe os-redis os-cinder os-httpd os-gnocchi os-collectd os-virt os-dnsmasq os-octavia os-podman os-rsyslog os-barbican os-logrotate os-certmonger os-timemaster os-ceilometer os-net-config $(EXTRA_TARGETS)
+TARGETS?=os-ovs os-swift os-nova os-neutron os-mysql os-glance os-rsync os-rabbitmq os-keepalived os-keystone os-haproxy os-ipxe os-redis os-cinder os-httpd os-gnocchi os-collectd os-virt os-dnsmasq os-octavia os-podman os-rsyslog os-barbican os-logrotate os-certmonger os-timemaster os-ceilometer os-net-config os-frr $(EXTRA_TARGETS)
 MODULES?=${TARGETS:=.pp.bz2}
 DATADIR?=/usr/share
 LOCALDIR?=/usr/share/openstack-selinux/master
diff --git a/os-frr.fc b/os-frr.fc
new file mode 100644
index 0000000..4cdedea
--- /dev/null
+++ b/os-frr.fc
@@ -0,0 +1 @@
+/var/run/frr      gen_context(system_u:object_r:container_var_run_t,s0)
diff --git a/os-frr.te b/os-frr.te
new file mode 100644
index 0000000..c54a34a
--- /dev/null
+++ b/os-frr.te
@@ -0,0 +1 @@
+policy_module(os-frr,0.1)