misc daemons from Russell Coker.

Put in libx32 subs entries that refer to directories with fc entries.

Allow dpkg_t to transition to dpkg_script_t when it executes bin_t for
dpkg-reconfigure.

Some dontaudit rules for mta processes spawned by mon for notification.

Lots of tiny changes that are obvious.

2 files changed, 5 insertions, 2 deletions

diff --git a/policy/modules/admin/dmesg.te b/policy/modules/admin/dmesg.te
index 4b36350ce..52d754a38 100644
--- a/policy/modules/admin/dmesg.te
+++ b/policy/modules/admin/dmesg.te
@@ -1,4 +1,4 @@
-policy_module(dmesg, 1.5.1)
+policy_module(dmesg, 1.5.2)
 
 ########################################
 #
@@ -29,6 +29,7 @@ kernel_read_proc_symlinks(dmesg_t)
 kernel_dontaudit_search_unlabeled(dmesg_t)
 
 dev_read_sysfs(dmesg_t)
+dev_read_kmsg(dmesg_t)
 
 fs_search_auto_mountpoints(dmesg_t)
 
diff --git a/policy/modules/admin/netutils.te b/policy/modules/admin/netutils.te
index 744a2aa3d..393c03b9a 100644
--- a/policy/modules/admin/netutils.te
+++ b/policy/modules/admin/netutils.te
@@ -1,4 +1,4 @@
-policy_module(netutils, 1.16.1)
+policy_module(netutils, 1.16.2)
 
 ########################################
 #
@@ -125,6 +125,8 @@ corenet_tcp_sendrecv_generic_node(ping_t)
 corenet_raw_bind_generic_node(ping_t)
 corenet_tcp_sendrecv_all_ports(ping_t)
 
+dev_read_urand(ping_t)
+
 fs_dontaudit_getattr_xattr_fs(ping_t)
 
 domain_use_interactive_fds(ping_t)