From b36ae9786f60a301035ea210c6ae5f07d5acf8d0 Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Dec 18 2009 15:45:22 +0000
Subject: Privoxy patch from Dan Walsh.


---

diff --git a/policy/modules/services/privoxy.fc b/policy/modules/services/privoxy.fc
index 7985e38..be4998a 100644
--- a/policy/modules/services/privoxy.fc
+++ b/policy/modules/services/privoxy.fc
@@ -1,6 +1,4 @@
-
-/etc/privoxy/user\.action --	gen_context(system_u:object_r:privoxy_etc_rw_t,s0)
-/etc/privoxy/default\.action --	gen_context(system_u:object_r:privoxy_etc_rw_t,s0)
+/etc/privoxy/[^/]*\.action --	gen_context(system_u:object_r:privoxy_etc_rw_t,s0)
 /etc/rc\.d/init\.d/privoxy --	gen_context(system_u:object_r:privoxy_initrc_exec_t,s0)
 
 /usr/sbin/privoxy	--	gen_context(system_u:object_r:privoxy_exec_t,s0)
diff --git a/policy/modules/services/privoxy.te b/policy/modules/services/privoxy.te
index 5fea253..191bf36 100644
--- a/policy/modules/services/privoxy.te
+++ b/policy/modules/services/privoxy.te
@@ -1,5 +1,5 @@
 
-policy_module(privoxy, 1.9.0)
+policy_module(privoxy, 1.9.1)
 
 ########################################
 #
@@ -47,9 +47,8 @@ logging_log_filetrans(privoxy_t, privoxy_log_t, file)
 manage_files_pattern(privoxy_t, privoxy_var_run_t, privoxy_var_run_t)
 files_pid_filetrans(privoxy_t, privoxy_var_run_t, file)
 
+kernel_read_system_state(privoxy_t)
 kernel_read_kernel_sysctls(privoxy_t)
-kernel_list_proc(privoxy_t)
-kernel_read_proc_symlinks(privoxy_t)
 
 corenet_all_recvfrom_unlabeled(privoxy_t)
 corenet_all_recvfrom_netlabel(privoxy_t)