From 3d60e19a30b05f173a6a95c813e86dff25d8ed73 Mon Sep 17 00:00:00 2001
From: Miroslav Grepl <mgrepl@redhat.com>
Date: Apr 05 2011 20:40:46 +0000
Subject: - Make matahari domains unconfined for now


---

diff --git a/policy-F13.patch b/policy-F13.patch
index ad1a2c6..1736ba9 100644
--- a/policy-F13.patch
+++ b/policy-F13.patch
@@ -26962,8 +26962,8 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mata
 +')
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/matahari.te serefpolicy-3.7.19/policy/modules/services/matahari.te
 --- nsaserefpolicy/policy/modules/services/matahari.te	1970-01-01 00:00:00.000000000 +0000
-+++ serefpolicy-3.7.19/policy/modules/services/matahari.te	2011-03-16 14:17:03.980107001 +0000
-@@ -0,0 +1,117 @@
++++ serefpolicy-3.7.19/policy/modules/services/matahari.te	2011-04-05 20:34:58.482000003 +0000
+@@ -0,0 +1,128 @@
 +policy_module(matahari,1.0.0)
 +
 +########################################
@@ -27031,6 +27031,10 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mata
 +	dbus_system_bus_client(matahari_hostd_t)
 +')
 +
++optional_policy(`
++	unconfined_domain(matahari_hostd_t)
++')
++
 +########################################
 +#
 +# matahari_netd local policy
@@ -27056,6 +27060,10 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mata
 +
 +sysnet_dns_name_resolve(matahari_netd_t)
 +
++optional_policy(`
++    unconfined_domain(matahari_netd_t)
++')
++
 +########################################
 +#
 +# matahari_serviced local policy
@@ -27081,6 +27089,9 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mata
 +
 +sysnet_dns_name_resolve(matahari_serviced_t)
 +
++optional_policy(`
++    unconfined_domain(matahari_serviced_t)
++')
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/memcached.if serefpolicy-3.7.19/policy/modules/services/memcached.if
 --- nsaserefpolicy/policy/modules/services/memcached.if	2010-04-13 18:44:37.000000000 +0000
 +++ serefpolicy-3.7.19/policy/modules/services/memcached.if	2010-09-16 12:51:54.000000000 +0000
diff --git a/selinux-policy.spec b/selinux-policy.spec
index b2756a9..3ece179 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -20,7 +20,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 3.7.19
-Release: 103%{?dist}
+Release: 104%{?dist}
 License: GPLv2+
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -471,6 +471,9 @@ exit 0
 %endif
 
 %changelog
+* Tue Apr 5 2011 Miroslav Grepl <mgrepl@redhat.com> 3.7.19-104
+- Make matahari domains unconfined for now
+
 * Tue Apr 5 2011 Miroslav Grepl <mgrepl@redhat.com> 3.7.19-103
 - Add allow_sysadm_manage_security boolean
 - Add label for /dev/dlm.*