From Debian package 0.2.20100524-9
0044-Debian-fixes-for-xserver-policy.patch (part of)

  * Allow user_t to talk to xdm_var_run_t sockets so switch user can work.

Needs to add the type to the require statement.

Index: policy/modules/services/xserver.if
===================================================================
--- policy/modules/services/xserver.if.orig
+++ policy/modules/services/xserver.if
@@ -747,6 +747,7 @@
 
 	files_search_tmp($1)
 	stream_connect_pattern($1, xdm_tmp_t, xdm_tmp_t, xdm_t)
+	stream_connect_pattern($1, xdm_var_run_t, xdm_var_run_t, xdm_t)
 ')
 
 ########################################