MCS fixes

quota fixes

execmem.patch

@@ -419,3 +419,38 @@ diff -up serefpolicy-3.10.0/policy/modules/system/userdomain.if~ serefpolicy-3.1
 +
 +	typeattribute $1 common_userdomain;
 +')
+diff -up serefpolicy-3.10.0/policy/modules/roles/staff.te~ serefpolicy-3.10.0/policy/modules/roles/staff.te
+--- serefpolicy-3.10.0/policy/modules/roles/staff.te~	2011-11-04 15:03:32.518287238 -0400
++++ serefpolicy-3.10.0/policy/modules/roles/staff.te	2011-11-04 15:34:10.747481773 -0400
+@@ -329,3 +329,5 @@ ifndef(`distro_redhat',`
+ tunable_policy(`allow_execmod',`
+ 	userdom_execmod_user_home_files(staff_usertype)
+ ')
++
++userdom_common_user(staff_execmem_t)
+diff -up serefpolicy-3.10.0/policy/modules/roles/sysadm.te~ serefpolicy-3.10.0/policy/modules/roles/sysadm.te
+--- serefpolicy-3.10.0/policy/modules/roles/sysadm.te~	2011-11-04 15:03:32.812288344 -0400
++++ serefpolicy-3.10.0/policy/modules/roles/sysadm.te	2011-11-04 15:35:11.552671224 -0400
+@@ -583,3 +583,5 @@ ifndef(`distro_redhat',`
+ 		xserver_role(sysadm_r, sysadm_t)
+ 	')
+ ')
++
++userdom_common_user(sysadm_execmem_t)
+diff -up serefpolicy-3.10.0/policy/modules/roles/unprivuser.te~ serefpolicy-3.10.0/policy/modules/roles/unprivuser.te
+--- serefpolicy-3.10.0/policy/modules/roles/unprivuser.te~	2011-11-04 15:03:32.521287248 -0400
++++ serefpolicy-3.10.0/policy/modules/roles/unprivuser.te	2011-11-04 15:34:20.887513436 -0400
+@@ -220,3 +220,4 @@ ifndef(`distro_redhat',`
+ 	')
+ ')
+ 
++userdom_common_user(user_execmem_t)
+diff -up serefpolicy-3.10.0/policy/modules/roles/xguest.te~ serefpolicy-3.10.0/policy/modules/roles/xguest.te
+--- serefpolicy-3.10.0/policy/modules/roles/xguest.te~	2011-11-04 15:03:32.522287252 -0400
++++ serefpolicy-3.10.0/policy/modules/roles/xguest.te	2011-11-04 15:34:52.250611193 -0400
+@@ -178,3 +178,5 @@ optional_policy(`
+ ')
+ 
+ gen_user(xguest_u, user, xguest_r, s0, s0)
++
++userdom_common_user(xguest_execmem_t)