++##
+ ## Allow svirt to manage device configuration, (pci)
+ ##
+ ##
+@@ -183,6 +190,7 @@
seutil_read_default_contexts(virtd_t)
term_getattr_pty_fs(virtd_t)
@@ -1121,7 +1135,20 @@ diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/pol
term_use_ptmx(virtd_t)
auth_use_nsswitch(virtd_t)
-@@ -316,16 +317,17 @@
+@@ -214,6 +222,12 @@
+ fs_read_cifs_symlinks(virtd_t)
+ ')
+
++tunable_policy(`virt_use_usb',`
++ dev_rw_usbfs(svirt_t)
++ fs_manage_dos_dirs(svirt_t)
++ fs_manage_dos_files(svirt_t)
++')
++
+ optional_policy(`
+ brctl_domtrans(virtd_t)
+ ')
+@@ -316,16 +330,17 @@
dontaudit svirt_t virt_content_t:file write_file_perms;
dontaudit svirt_t virt_content_t:dir write;
@@ -1142,7 +1169,7 @@ diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/pol
corenet_udp_sendrecv_generic_if(svirt_t)
corenet_udp_sendrecv_generic_node(svirt_t)
corenet_udp_sendrecv_all_ports(svirt_t)
-@@ -353,10 +355,6 @@
+@@ -353,10 +368,6 @@
')
optional_policy(`
diff --git a/selinux-policy.spec b/selinux-policy.spec
index b377441..b948ab9 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -20,7 +20,7 @@
Summary: SELinux policy configuration
Name: selinux-policy
Version: 3.6.12
-Release: 54%{?dist}
+Release: 55%{?dist}
License: GPLv2+
Group: System Environment/Base
Source: serefpolicy-%{version}.tgz
@@ -475,7 +475,7 @@ exit 0
%endif
%changelog
-* Fri Jun 19 2009 Dan Walsh