From ac986a79197e85d8d5f9dc490c7e1d16d549a8fe Mon Sep 17 00:00:00 2001
From: Daniel J Walsh <dwalsh@fedoraproject.org>
Date: Jan 15 2008 13:22:18 +0000
Subject: - Fix filecontext for networkmanagerlog files

- Allow mount to read samba config
- Fix label of /var/lib/tftpboot
- Fix label of /usr/lib(64)?/xorg/modules/glesx.so
- Fix label on /etc/NetworkManager/dispatcher.d/*
- Allow httpd to send dbus messages

---

diff --git a/policy-20070703.patch b/policy-20070703.patch
index c04d244..92b19e6 100644
--- a/policy-20070703.patch
+++ b/policy-20070703.patch
@@ -19747,7 +19747,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/userdo
  /tmp/gconfd-USER -d	gen_context(system_u:object_r:ROLE_tmp_t,s0)
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/userdomain.if serefpolicy-3.0.8/policy/modules/system/userdomain.if
 --- nsaserefpolicy/policy/modules/system/userdomain.if	2007-10-22 13:21:40.000000000 -0400
-+++ serefpolicy-3.0.8/policy/modules/system/userdomain.if	2008-01-14 09:59:37.000000000 -0500
++++ serefpolicy-3.0.8/policy/modules/system/userdomain.if	2008-01-15 08:07:59.000000000 -0500
 @@ -29,8 +29,9 @@
  	')
  
@@ -19992,9 +19992,9 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/userdo
 -	tunable_policy(`use_nfs_home_dirs',`
 -		fs_exec_nfs_files($1_t)
 +	tunable_policy(`allow_$1_exec_content', `
-+		can_exec($1_usertype,$1_home_type)
++		can_exec($1_usertype,user_home_type)
 +	',`
-+		dontaudit $1_usertype $1_home_type:file execute;
++		dontaudit $1_usertype user_home_type:file execute;
  	')
  
 -	tunable_policy(`use_samba_home_dirs',`