From Debian package 0.2.20100524-5

  * Allow lvm_t rw access to unconfined_t semaphores.

Index: policy/modules/system/lvm.te
===================================================================
--- policy/modules/system/lvm.te.orig
+++ policy/modules/system/lvm.te
@@ -42,6 +42,9 @@
 files_tmp_file(lvm_tmp_t)
 
 allow lvm_t self:sem create_sem_perms;
+optional_policy(`
+	unconfined_sem_rw(lvm_t)
+')
 
 ########################################
 #
Index: policy/modules/system/unconfined.if
===================================================================
--- policy/modules/system/unconfined.if.orig
+++ policy/modules/system/unconfined.if
@@ -337,6 +337,24 @@
 
 ########################################
 ## <summary>
+##	rw access to a semaphore created by the unconfined domain.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`unconfined_sem_rw',`
+	gen_require(`
+		type unconfined_t;
+	')
+
+	allow $1 unconfined_t:sem rw_sem_perms;
+')
+
+########################################
+## <summary>
 ##	Send a SIGCHLD signal to the unconfined domain.
 ## </summary>
 ## <param name="domain">