can_exec(): move from misc_macros to misc_patterns

The file misc_macros.spt is due heavy usage of the m4 language
hard to parse for third party tools.
Move the macro can_exec() to misc_patterns.spt, which contains
only interface like define blocks.

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>

policy/support/misc_macros.spt

@@ -62,12 +62,6 @@ user $1 roles { $3 }`'ifdef(`enable_mls', ` level $4 range $5')`'ifdef(`enable_m
 #
 define(`gen_context',`$1`'ifdef(`enable_mls',`:$2')`'ifdef(`enable_mcs',`:s0`'ifelse(`$3',,,`:$3')')')dnl
 
-########################################
-#
-# can_exec(domain,executable)
-#
-define(`can_exec',`allow $1 $2:file { mmap_exec_file_perms ioctl lock execute_no_trans };')
-
 ########################################
 #
 # gen_bool(name,default_value)

policy/support/misc_patterns.spt

@@ -111,3 +111,12 @@ define(`admin_process_pattern',`
 
 	allow $1 $2:process { ptrace signal_perms };
 ')
+
+#
+# File execution pattern
+#
+# Parameters:
+# 1. source domain
+# 2. executable file type
+#
+define(`can_exec',`allow $1 $2:file { mmap_exec_file_perms ioctl lock execute_no_trans };')