new modules

NetworkManager.te

@@ -0,0 +1,10 @@
+module NetworkManager 1.0;
+
+require {
+        type lib_t;
+        type NetworkManager_t;
+        class file execute_no_trans;
+}
+
+#============= NetworkManager_t ==============
+allow NetworkManager_t lib_t:file execute_no_trans;

Xorg.te

@@ -0,0 +1,10 @@
+module Xorg 1.0;
+
+require {
+        type xserver_t;
+        class process execmem;
+}
+
+#============= xserver_t ==============
+# Note: you can also use one of the following boolean: allow_execmem, allow_execstack
+allow xserver_t self:process execmem;

sddm.te

@@ -0,0 +1,16 @@
+module sddm 1.0;
+
+require {
+        type xdm_t;
+        type usr_t;
+        type unconfined_t;
+        class process execmem;
+        class file entrypoint;
+}
+
+#============= unconfined_t ==============
+allow unconfined_t usr_t:file entrypoint;
+
+#============= xdm_t ==============
+# Note: you can also use one of the following boolean: allow_execmem, allow_execstack, xserver_gnome_xdm
+allow xdm_t self:process execmem;