#Change for Browser_t
/dev/null		system_u:object_r:common_t
/dev/tty		system_u:object_r:common_t
/dev/dm-0		system_u:object_r:common_t
/dev/urandom		system_u:object_r:common_t

/tmp/*			system_u:object_r:common_t

/lib/.*			system_u:object_r:common_t
/lib/libtinfo.so.5      system_u:object_r:common_t
/lib/libtinfo.so.5.7    system_u:object_r:common_t

/opt/.*			system_u:object_r:Obj_C1I1
/var/.*			system_u:object_r:Obj_C1I1
/usr			system_u:object_r:Obj_C0I2
/usr/.*			system_u:object_r:Obj_C1I1
/root/.*		system_u:object_r:Obj_C1I1
/sys/.*			<<none>>
/tmp/.*			<<none>>
/srv/.*			system_u:object_r:Obj_C1I1
/etc/.*			system_u:object_r:Obj_C1I1
/bin			system_u:object_r:Obj_C0I2
/bin/.*			system_u:object_r:Obj_C0I2
/sbin			system_u:object_r:Obj_C0I2
/sbin/.*		system_u:object_r:Obj_C0I2
/dev/.*			system_u:object_r:Obj_C1I1
/opt/.*\.so		system_u:object_r:Obj_C1I1
/dev/[0-9].*	-c	system_u:object_r:Obj_C1I1
/usr/bin/.*		system_u:object_r:Obj_C0I2
/usr/lib/.*		system_u:object_r:common_t

##CHANGE for Xorg
/usr/lib(64)?/xorg/libGL\.so(\.[^/]*)*	--		system_u:object_r:Obj_L0C1I1
/usr/lib(64)?/xorg/modules/glesx\.so(\.[^/]*)*	--	system_u:object_r:Obj_L0C1I1
/usr/lib(64)?/xorg/modules/drivers/nvidia_drv\.o	--		system_u:object_r:Obj_L0C1I1
/usr/lib(64)?/xorg/modules/drivers/fglrx_drv\.so(\.[^/]*)*	--	system_u:object_r:Obj_L0C1I1

#change type=AVC msg=audit(1267384136.510:11): avc:  denied  { read } for  pid=1202 comm="Xorg" name="libglx.so" dev=dm-0 ino=59000 scontext=system_usystem_r:Loading_boot_t tcontext=system_u:object_r:Obj_L0C0I1 tclass=file
/usr/lib(64)?/xorg/modules/extensions/libglx\.so(\.[^/]*)*	--	system_u:object_r:Obj_L0C1I1


/usr/lib(64)?/xorg/modules/extensions/nvidia(-[^/]*)?/libglx\.so(\.[^/]*)*	-- system_u:object_r:Obj_L0C1I1
/var/log/Xorg.*	--	system_u:object_r:Obj_C1I1
/var/run/xorg(/.*)?	system_u:object_r:Obj_L0C1I1
/var/lib/xorg(/.*)?	system_u:object_r:Obj_L0C1I1



##Testing part
#
#
/proc/sys/fs/inotify			system_u:object_r:common_t
/proc/sys/fs/inotify/.*			system_u:object_r:common_t


/usr/sbin/crond			system_u:system_r:Obj_L0C1I1
/root/test 			system_u:object_r:Obj_C0I0
