From: dwalsh@redhat.com (Daniel J Walsh)
Date: Wed, 02 Jun 2010 16:25:34 -0400
Subject: [refpolicy] kernel_kernel.patch
Message-ID: <4C06BE3E.20000@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

http://people.fedoraproject.org/~dwalsh/SELinux/F14/kernel_kernel.patch

Add ability to dontaudit requiests to load kernel modules.  If you 
disable ipv6 every confined app that does ip, tries to get the kernel to 
load the module.

Better handling of unlabeled files by the kernel interfaces

Apps needs to connect to the kernel stream

Add type for infinibandeventfs

Need to allow unlabeled_t files to be put on disk in order that livecd 
will work.