[selinux-policy: 3156/3172] Allow nsplugin to sendto itself dgrams Fix /root/.ssh labeling

[Daniel J Walsh]

commit f6e966f3aed36e4ca2eb9194c3e884815fb570d8
Author: Dan Walsh <dwalsh at redhat.com>
Date:   Wed Sep 29 10:55:40 2010 -0400

    Allow nsplugin to sendto itself dgrams
    Fix /root/.ssh labeling

 policy/modules/apps/nsplugin.te |    2 +-
 policy/modules/services/ssh.fc  |    4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)
---
diff --git a/policy/modules/apps/nsplugin.te b/policy/modules/apps/nsplugin.te
index 594e5d9..4e8a49e 100644
--- a/policy/modules/apps/nsplugin.te
+++ b/policy/modules/apps/nsplugin.te
@@ -61,7 +61,7 @@ allow nsplugin_t self:sem create_sem_perms;
 allow nsplugin_t self:shm create_shm_perms;
 allow nsplugin_t self:msgq create_msgq_perms;
 allow nsplugin_t self:unix_stream_socket { connectto create_stream_socket_perms };
-allow nsplugin_t self:unix_dgram_socket create_socket_perms;
+allow nsplugin_t self:unix_dgram_socket { sendto create_socket_perms };
 allow nsplugin_t nsplugin_rw_t:dir list_dir_perms;
 read_lnk_files_pattern(nsplugin_t, nsplugin_rw_t, nsplugin_rw_t)
 read_files_pattern(nsplugin_t, nsplugin_rw_t, nsplugin_rw_t)
diff --git a/policy/modules/services/ssh.fc b/policy/modules/services/ssh.fc
index dd706b0..06da5f7 100644
--- a/policy/modules/services/ssh.fc
+++ b/policy/modules/services/ssh.fc
@@ -21,5 +21,5 @@ HOME_DIR/\.shosts			gen_context(system_u:object_r:ssh_home_t,s0)
 /var/run/sshd\.init\.pid	--	gen_context(system_u:object_r:sshd_var_run_t,s0)
 /var/run/sshd\.pid		--	gen_context(system_u:object_r:sshd_var_run_t,s0)
 
-/root/\.ssh(/.*)?			gen_context(system_u:object_r:home_ssh_t,s0)
-/root/\.shosts				gen_context(system_u:object_r:home_ssh_t,s0)
+/root/\.ssh(/.*)?			gen_context(system_u:object_r:ssh_home_t,s0)
+/root/\.shosts				gen_context(system_u:object_r:ssh_home_t,s0)