Miscfiles patch from Dan Walsh.

policy/modules/system/miscfiles.if

@@ -85,6 +85,45 @@ interface(`miscfiles_read_fonts',`
 	read_lnk_files_pattern($1, fonts_t, fonts_t)
 ')
 
+########################################
+## <summary>
+##	Set the attributes on a fonts directory.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+## <rolecap/>
+#
+interface(`miscfiles_setattr_fonts_dirs',`
+	gen_require(`
+		type fonts_t;
+	')
+
+	allow $1 fonts_t:dir setattr;
+')
+
+########################################
+## <summary>
+##	Do not audit attempts to set the attributes
+##	on a fonts directory.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+## <rolecap/>
+#
+interface(`miscfiles_dontaudit_setattr_fonts_dirs',`
+	gen_require(`
+		type fonts_t;
+	')
+
+	dontaudit $1 fonts_t:dir setattr;
+')
+
 ########################################
 ## <summary>
 ##	Do not audit attempts to write fonts.
@@ -253,6 +292,25 @@ interface(`miscfiles_legacy_read_localization',`
 	allow $1 locale_t:file execute;
 ')
 
+########################################
+## <summary>
+##	Search man pages.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain to not audit.
+##	</summary>
+## </param>
+#
+interface(`miscfiles_search_man_pages',`
+	gen_require(`
+		type man_t;
+	')
+
+	allow $1 man_t:dir search_dir_perms;
+	files_search_usr($1)
+')
+
 ########################################
 ## <summary>
 ##	Do not audit attempts to search man pages.
@@ -268,7 +326,7 @@ interface(`miscfiles_dontaudit_search_man_pages',`
 		type man_t;
 	')
 
-	dontaudit $1 man_t:dir search;
+	dontaudit $1 man_t:dir search_dir_perms;
 ')
 
 ########################################

policy/modules/system/miscfiles.te

@@ -1,5 +1,5 @@
 
-policy_module(miscfiles, 1.7.0)
+policy_module(miscfiles, 1.7.1)
 
 ########################################
 #