This patch allows corecmd_exec_bin from the dbus module. This is
required to run python from dbus-daemon-launch-helper. It might also
required to run other packages from dbus, for example, packages that do
not have a refpolicy module yet and are labeled generically bin_t.
diff -pruN refpolicy-git-15022011-test/policy/modules/services/dbus.te refpolicy-git-15022011-test-new/policy/modules/services/dbus.te
--- refpolicy-git-15022011-test/policy/modules/services/dbus.te 2011-02-16 02:34:33.703262756 +0100
+++ refpolicy-git-15022011-test-new/policy/modules/services/dbus.te 2011-02-16 02:37:21.345655107 +0100
@@ -108,6 +108,7 @@ term_dontaudit_use_console(system_dbusd_
auth_use_nsswitch(system_dbusd_t)
auth_read_pam_console_data(system_dbusd_t)
+corecmd_exec_bin(system_dbusd_t)
corecmd_list_bin(system_dbusd_t)
corecmd_read_bin_pipes(system_dbusd_t)
corecmd_read_bin_sockets(system_dbusd_t)