--- nsaserefpolicy/policy/modules/services/ccs.te	2007-03-20 23:38:06.000000000 -0400
+++ serefpolicy-2.5.10/policy/modules/services/ccs.te	2007-03-22 15:06:59.000000000 -0400
@@ -10,10 +10,14 @@
 type ccs_exec_t;
 init_daemon_domain(ccs_t, ccs_exec_t)
 
-# pid files
+# conf files
 type cluster_conf_t;
 files_type(cluster_conf_t)
 
+# tmp files
+type ccs_tmp_t;
+files_tmp_file(ccs_tmp_t)
+
 # log files
 type ccs_var_log_t;
 logging_log_file(ccs_var_log_t)
@@ -45,6 +49,12 @@
 
 manage_files_pattern(ccs_t,cluster_conf_t,cluster_conf_t)
 
+# tmp file
+allow ccs_t ccs_tmp_t:dir manage_dir_perms;
+manage_dirs_pattern(ccs_t,ccs_tmp_t,ccs_tmp_t)
+manage_files_pattern(ccs_t,ccs_tmp_t,ccs_tmp_t)
+files_tmp_filetrans(ccs_t, ccs_tmp_t, { file dir })
+
 # log files
 manage_files_pattern(ccs_t,ccs_var_log_t,ccs_var_log_t)
 manage_sock_files_pattern(ccs_t,ccs_var_log_t,ccs_var_log_t)