Return-Path: <SRS0=80Bq=QY=vger.kernel.org=selinux-refpolicy-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.0 required=3.0 tests=DKIMWL_WL_MED,DKIM_SIGNED,
	DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_PASS
	autolearn=ham autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 865FEC43381
	for <selinux-refpolicy@archiver.kernel.org>; Sun, 17 Feb 2019 16:34:10 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.kernel.org (Postfix) with ESMTP id 38DED2190C
	for <selinux-refpolicy@archiver.kernel.org>; Sun, 17 Feb 2019 16:34:10 +0000 (UTC)
Authentication-Results: mail.kernel.org;
	dkim=pass (1024-bit key) header.d=tresys.onmicrosoft.com header.i=@tresys.onmicrosoft.com header.b="Z+OisVuS"
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1725820AbfBQQeK (ORCPT
        <rfc822;selinux-refpolicy@archiver.kernel.org>);
        Sun, 17 Feb 2019 11:34:10 -0500
Received: from mail-eopbgr790129.outbound.protection.outlook.com ([40.107.79.129]:16839
        "EHLO NAM03-CO1-obe.outbound.protection.outlook.com"
        rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
        id S1725810AbfBQQeJ (ORCPT
        <rfc822;selinux-refpolicy@vger.kernel.org>);
        Sun, 17 Feb 2019 11:34:09 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=tresys.onmicrosoft.com; s=selector1-tresys-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=yQyLJ6FhXQrGuWt208dlLQ1g8ZbbDG5V5OpD/Zxytko=;
 b=Z+OisVuSe9UQin/kTIrhwcUCEIsPyPHClpFCRkN/cH+lKgEnX7rWXxVPjEs5gN1DLiu7XP9G2U0KS3EEDJSQms5MoFigzfd4WhOI/CWMFIaaoPjI9Y9TLf71tvhparcYRovGS3dHHgJouHNrgvf/2a0Pb52HHBggzgkCMWQxQsw=
Received: from BN6PR15MB1507.namprd15.prod.outlook.com (10.172.151.147) by
 BN6PR15MB1460.namprd15.prod.outlook.com (10.172.152.140) with Microsoft SMTP
 Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.1601.19; Sun, 17 Feb 2019 16:34:03 +0000
Received: from BN6PR15MB1507.namprd15.prod.outlook.com
 ([fe80::f1c7:33d:34ac:bdce]) by BN6PR15MB1507.namprd15.prod.outlook.com
 ([fe80::f1c7:33d:34ac:bdce%3]) with mapi id 15.20.1601.026; Sun, 17 Feb 2019
 16:34:03 +0000
From:   "Sugar, David" <dsugar@tresys.com>
To:     Chris PeBenito <pebenito@ieee.org>,
        "selinux-refpolicy@vger.kernel.org" 
        <selinux-refpolicy@vger.kernel.org>
Subject: Re: [PATCH] New interface to dontaudit access to cert_t
Thread-Topic: [PATCH] New interface to dontaudit access to cert_t
Thread-Index: AQHUwtOirpV8izD8NkqbXYirrG0BEaXeZgWAgACanICAA9izAIABXjIA
Date:   Sun, 17 Feb 2019 16:34:03 +0000
Message-ID: <2e4ccece-4ca3-37fa-f76c-97d37e2f5534@tresys.com>
References: <20190212130456.11572-1-dsugar@tresys.com>
 <8982046d-990a-29f5-6d76-d202ce647845@ieee.org>
 <e74efb79-5354-a997-cce1-c82b82b2c699@tresys.com>
 <4563f4e3-7525-f19c-55a6-45caca5786f7@ieee.org>
In-Reply-To: <4563f4e3-7525-f19c-55a6-45caca5786f7@ieee.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [73.180.141.176]
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
 Thunderbird/60.4.0
x-clientproxiedby: BN6PR08CA0062.namprd08.prod.outlook.com
 (2603:10b6:404:b9::24) To BN6PR15MB1507.namprd15.prod.outlook.com
 (2603:10b6:404:c6::19)
authentication-results: spf=none (sender IP is )
 smtp.mailfrom=dsugar@tresys.com; 
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d9bd2f1d-40a5-4d74-94e4-08d694f5ba4c
x-microsoft-antispam: BCL:0;PCL:0;RULEID:(2390118)(7020095)(4652040)(7021145)(8989299)(4534185)(7022145)(4603075)(4627221)(201702281549075)(8990200)(7048125)(7024125)(7027125)(7023125)(5600110)(711020)(4605104)(2017052603328)(7153060)(7193020);SRVR:BN6PR15MB1460;
x-ms-traffictypediagnostic: BN6PR15MB1460:
x-microsoft-exchange-diagnostics: =?utf-8?B?MTtCTjZQUjE1TUIxNDYwOzIzOmp6aHVVQ2Y5ZGoxMHc0cXF0WVptcGRlNzF2?=
 =?utf-8?B?ZW44Rm9ZZXlFVWFwWW9USmhzNmRMcm9rSGhoMkwvWlpxSlJWc0ZWYWVJekdT?=
 =?utf-8?B?WXhmbi9wTCt3d3pzR3lKRitjZ3o2eTMwWU1jSUJhTi81R2NHM2ZHbVhYTUF4?=
 =?utf-8?B?akp2RTdFRHRVa0JMc29QNTdyWFM2NDl1M05UWnZiUnNKUU5TTERlT1JXckU0?=
 =?utf-8?B?KzhFR1g2N05nRHJLTkxTVEFqUlpFcUVjM3RRYVgreUF1SWo2VGQzKzBZVFcz?=
 =?utf-8?B?aWNwVWltelEvVnFBT2crdDFJd3AweXlEQXh2L0czZnNLOWVSS25wSTJVR1pn?=
 =?utf-8?B?LzdheFhWZExBM3Q2c3BkWnIxYk41WUFZNFlBQVIrNEtTQ28zQ2tuVGlFR254?=
 =?utf-8?B?S0xQcnVnc0o2empjZm42ZmRpcy9qZGdWdWpyQVVpd09sWGxuNm85V3liUlBX?=
 =?utf-8?B?U01kM24wOWI2RVhpNjd2ek91Mm0zQkFGdFgrRGVUTDh3YXdEMVRrTmhKb0o2?=
 =?utf-8?B?WkRLcUZESnFpcUFCYjlIei9ISjRQenpuY3JyWnppSmlRMVBmMUYySmVtc1o0?=
 =?utf-8?B?cjQraE94RUU0S044MDJhbFVJdXE1SlB2TC96OFlwV3FyWWVKejdLaXNXaU92?=
 =?utf-8?B?S0ZaLzFHMFFlK1NIa0JQeSs1anVmS1RJUXNlaUIzZW9YNzhpQ0drVHNveVRr?=
 =?utf-8?B?c0J3UzlVeWhqMEpaWUlqSzM5WnBrUWtGK3dqeGIyNFpxYlBHRjBHcEI3YjRq?=
 =?utf-8?B?TVpObElRbEFIdXI3ZG1GdThoNTZtOStEQWxlNHNLMXVGNDV3cGxiVXdQSnNB?=
 =?utf-8?B?ek9KRktYekJFNHBwbmQxUHJTanNWTzFrdlkzSUdUU2R2WXg1MU9TdXM1THJx?=
 =?utf-8?B?TitXeEc2b1htUHR2b2ZnWUYvUHFiSUVneGRCQjRpZk9ER3VESG1RTVgwNzV3?=
 =?utf-8?B?SU0zZFpnZWVjekdHY2EvVXdBTCtNUnltVytoNjEzU0xGdE4rWVdLNHJtZUhL?=
 =?utf-8?B?bEVzRTJERlpRZmlmYktnY1ZVSTFGUUVFbSt4V3ZKTXRNMDlURU5YUVVuMktN?=
 =?utf-8?B?aVp2WmhhbytuY2VBUmwxSUZpL0c2TWdMTGF3OCsybEllRXcxR25ZZEYrV29G?=
 =?utf-8?B?azMvTTJSWVpkTTh5T1VZWWcxSG5vZ0tQcVlzU3k2ckZMYXdUcHFab1RpY3F3?=
 =?utf-8?B?eDgzR0lncGdQd3MrNkFEMnBaVWF4dUNxbkRaNWdZc2RJZmZxaC82VFVVVlhs?=
 =?utf-8?B?TDNpMmhVQlpyaXB2Z2xJU0hjcjFjSDNNQTU1YjRibGZxM2g0TDJtQmR3VzBS?=
 =?utf-8?B?M1R4cTM4dUNJWUJsV3VmVWltZTV3SGhVSHBBdGFmZm9ZSlcyZnByRGtiaUZE?=
 =?utf-8?B?Ly9RQ1UreFl0SGI4YlovbWVXQWY3NWFhcmxTYTIvczRYTFhFUFNXWERzR0N3?=
 =?utf-8?B?ZllEdm9vWHZUczNVczBxdXpHYXIvcUo4ZGRqYkowK1o0TktFV3MxUnVORWMz?=
 =?utf-8?B?eGl1S2hQRSt2RDNGM3gxM3U3ME5uM0tBaHN6NW42NnM4Z2JTVDBxemRWaFUy?=
 =?utf-8?B?VjR1SVYxTVlvNmZUS3l2Y1ExOUdpV3pOR04vNVdlcW9YczN1NGw0emRQK1Y2?=
 =?utf-8?B?ZnZZOU8zRHdxa2NJckNJNU5HMmpPanhmV1ZXMmdrSExBODN2M0hyd2J4VFdu?=
 =?utf-8?B?TDNDb0lsOVBkTmNOVGVpRjZyUEc0NGpPeEZLTEI3bG1iclJOT2JSL0xSb0NF?=
 =?utf-8?B?WkNvR0o4ZkVpY1BPdDFVS21lOThVVFZ3Y2RpbFRjSFJXMW5tWlVaR0RuWTBW?=
 =?utf-8?B?Y0NKQWhkbGFnMU1nL0JOTHJuU3JTcEUrUlE1eWJFNkxTaUREbzN1YWtOUkZu?=
 =?utf-8?Q?q1Mpy9QkWeqocdd4pBDHOVegQpinM7jX?=
x-microsoft-antispam-prvs: <BN6PR15MB1460656DC738B8F29FD7B8F1B9620@BN6PR15MB1460.namprd15.prod.outlook.com>
x-forefront-prvs: 0951AB0A30
x-forefront-antispam-report: SFV:NSPM;SFS:(10019020)(396003)(376002)(366004)(39830400003)(346002)(136003)(189003)(199004)(5660300002)(93886005)(446003)(65826007)(106356001)(3846002)(68736007)(53936002)(305945005)(58126008)(110136005)(6116002)(31696002)(25786009)(508600001)(2616005)(6246003)(66066001)(2501003)(105586002)(65806001)(14444005)(14454004)(256004)(476003)(65956001)(99286004)(86362001)(71190400001)(71200400001)(186003)(52116002)(6436002)(486006)(6486002)(31686004)(6506007)(229853002)(11346002)(53546011)(386003)(76176011)(8936002)(36756003)(64126003)(2906002)(6512007)(81166006)(26005)(102836004)(97736004)(8676002)(81156014)(7736002)(316002);DIR:OUT;SFP:1102;SCL:1;SRVR:BN6PR15MB1460;H:BN6PR15MB1507.namprd15.prod.outlook.com;FPR:;SPF:None;LANG:en;PTR:InfoNoRecords;MX:1;A:1;
received-spf: None (protection.outlook.com: tresys.com does not designate
 permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 6OptTN+Lq3WeyIOb1ipQAmp9cEG+fK8IOhXooqJYPLERi61sz53aUfu+CJX+4T/7fkinlnZLcThY1ykm1uE5M+8DNwqw2gqGokvEJbnZkwiW31OmZlGMasdMMPBjxtxdEbK3GGHRrMcGZsmcTWm4Tq3mmU8jwmFf23Hrpi4/R3SfLjxF2P1tAoIxUNcx6F1/FeClK78IroOOkiclDzrSQy+amjTQnA5ke6gr4tlCucJbNaw5vQiyapPT7HlXuhQIaBdE4qmCLXE6ncUN50RAsg6VixEvgbAGRj1oeRQsAn1hXAk1J7mig6rTMkhLRlMLRGjnPwakMCpY7Iwfj8yCThPa/UG1KsUe+X9b6jJS7Cbjiyzf2GsxoYeYSZOOcV3IehiP/5Nt0ke2VM3EgBsI2L/v+uFAxgsavHw3cK+5fjE=
Content-Type: text/plain; charset="utf-8"
Content-ID: <5831B884B0D83046ACE3C37ABA49AE2A@namprd15.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: tresys.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d9bd2f1d-40a5-4d74-94e4-08d694f5ba4c
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Feb 2019 16:34:03.2232
 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-id: a0d45667-6c07-4e88-868f-4ac9af95c7ed
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR15MB1460
Sender: selinux-refpolicy-owner@vger.kernel.org
Precedence: bulk
List-ID: <selinux-refpolicy.vger.kernel.org>
X-Mailing-List: selinux-refpolicy@vger.kernel.org

DQoNCk9uIDIvMTYvMTkgMjo0MCBQTSwgQ2hyaXMgUGVCZW5pdG8gd3JvdGU6DQo+IE9uIDIvMTQv
MTkgODo1NiBBTSwgU3VnYXIsIERhdmlkIHdyb3RlOg0KPj4NCj4+DQo+PiBPbiAyLzEzLzE5IDY6
NDIgUE0sIENocmlzIFBlQmVuaXRvIHdyb3RlOg0KPj4+IE9uIDIvMTIvMTkgODowNSBBTSwgU3Vn
YXIsIERhdmlkIHdyb3RlOg0KPj4+PiBJJ20gc2VlaW5nIGEgYnVuY2ggb2YgZGVuaWFscyBmb3Ig
dmFyaW91cyBwcm9jZXNzZXMgKHNvbWUgcmVmcG9saWN5DQo+Pj4+IGRvbWFpbnMsIHNvbWUgbXkg
b3duIGFwcGxpY2F0aW9uIGRvbWFpbnMpIGF0dGVtcHRpbmcgdG8gYWNjZXNzDQo+Pj4+IC9ldGMv
cGtpLsKgIFRoZXkgc2VlbSB0byBiZSB3b3JraW5nIE9LIGV2ZW4gd2l0aCB0aGUgZGVuaWFsLsKg
IEFkZGluZw0KPj4+PiBpbnRlcmZhY2UgdG8gZG9udGF1ZGl0IHRoaXMgc3R1ZmYgYW5kIGNhbGxp
bmcgdGhlIGludGVyZmFjZS4NCj4+Pj4NCj4+Pj4gdHlwZT1BVkMgbXNnPWF1ZGl0KDE1NDk5MzIz
MDAuNjY4OjI2Nik6IGF2YzrCoCBkZW5pZWTCoCB7IHNlYXJjaCB9IGZvcg0KPj4+PiBwaWQ9NzA3
NyBjb21tPSJYIiBuYW1lPSJwa2kiIGRldj0iZG0tMSIgaW5vPTEzOA0KPj4+PiBzY29udGV4dD1z
eXN0ZW1fdTpzeXN0ZW1fcjp4c2VydmVyX3Q6czAtczA6YzAuYzEwMjMNCj4+Pj4gdGNvbnRleHQ9
c3lzdGVtX3U6b2JqZWN0X3I6Y2VydF90OnMwIHRjbGFzcz1kaXIgcGVybWlzc2l2ZT0wDQo+Pj4+
IHR5cGU9QVZDIG1zZz1hdWRpdCgxNTQ5OTMyMzA2LjU1Mzo0MzApOiBhdmM6wqAgZGVuaWVkwqAg
eyBzZWFyY2ggfSBmb3INCj4+Pj4gcGlkPTczNDUgY29tbT0iY2xhbWQiIG5hbWU9InBraSIgZGV2
PSJkbS0xIiBpbm89MTM4DQo+Pj4+IHNjb250ZXh0PXN5c3RlbV91OnN5c3RlbV9yOmNsYW1kX3Q6
czA6YzENCj4+Pj4gdGNvbnRleHQ9c3lzdGVtX3U6b2JqZWN0X3I6Y2VydF90OnMwIHRjbGFzcz1k
aXIgcGVybWlzc2l2ZT0wDQo+Pj4NCj4+PiBNeSBndWVzcyBpcyB0aGVyZSBpcyBzb21lIGNvbW1v
biBsaWJyYXJ5IGJldHdlZW4gdGhlbSAobWF5YmUgZ2xpYmMpDQo+Pj4gd2hpY2ggaXMgdHJpZ2dl
cmluZyB0aGlzLsKgIEl0IHNlZW1zIGxpa2UgdGhpcyBtaWdodCBwb3RlbnRpYWxseSBjb3ZlciB1
cA0KPj4+IGxlZ2l0aW1hdGUgYWNjZXNzLsKgIEl0J3MganVzdCBoYXJkIHRvIHRlbGwgYnkganVz
dCBkaXIgc2VhcmNoZXMuDQo+Pj4NCj4+DQo+PiBEaWdnaW5nIGludG8gdGhpcyBJIGhhdmUgZm91
bmQgYSBmZXcgdGhpbmdzLCBhbmQgcGxlYXNlIG5vdGUgdGhhdCBJIGFtDQo+PiBub3Qgc2VlaW5n
IHRoaXMgZGVuaWFsIGluIHBlcm1pc3NpdmUuDQo+Pg0KPj4gTG9va2luZyBhdCBzdHJhY2UgZm9y
IGNsYW1kIEkgc2VlIGFuIGF0dGVtcHQgdG8gb3BlbiB0aGUgKG5vbi1leGlzdGVudCkNCj4+IGZp
bGUgL2V0Yy9wa2kvdGxzL2xlZ2FjeS1zZXR0aW5ncy7CoCBJIHRoaW5rIHRoaXMgd291bGQgZXhw
bGFpbiB0aGUNCj4+IGRlbmlhbCBvbiBkaXIgc2VhcmNoLg0KPj4NCj4+IElmIEkgY3JlYXRlIHRo
YXQgZmlsZSAoZXZlbiBlbXB0eSkgbGFiZWxlZCBjZXJ0X3QgSSBzZWUgZGVuaWFscyAoaW4NCj4+
IHBlcm1pc3NpdmUpIGZvciBjbGFtZF90IGNlcnRfdDpmaWxlIHsgZ2V0YXR0ciBvcGVuIHJlYWQg
fS4NCj4+DQo+PiBhdWRpdDJhbGxvdyBzdWdnZXN0cyB0aGUgYm9vbGVhbiAnYXV0aGxvZ2luX25z
c3dpdGNoX3VzZV9sZGFwJyBzaG91bGQNCj4+IHJlc29sdmUgdGhlIGlzc3VlIChmb3IgY2xhbWRf
dCkuwqAgVGhpcyBtYWtlcyBzZW5zZSBhcyBjbGFtZCB1c2VzIHRoZQ0KPj4gaW50ZXJmYWNlIGF1
dGhfdXNlX25zc3dpdGNoKGNsYW1kX3QpLg0KPj4NCj4+IFNvLCBhc3N1bWluZyB0aGF0IEkgZG9u
J3Qgd2FudCB0byBlbmFibGUgJ2F1dGhsb2dpbl9uc3N3aXRjaF91c2VfbGRhcCcNCj4+IGlzIHRo
ZXJlIGEgd2F5IHRvIHF1aWV0IHRoaXMgZGVuaWFsPw0KPiANCj4gVGhlIGRvbnRhdWRpdCBjb3Vs
ZCBnbyBpbiB0aGUgZWxzZSBibG9jayBmb3IgdGhhdCB0dW5hYmxlLg0KPiANClRoYXQgd29ya3Mg
Zm9yIG1lLiAgSW4gdGhpcyBjYXNlIHRob3VnaCwgc2hvdWxkIEkgbGVhdmUgdGhlIGludGVyZmFj
ZSBhcyANCnByb3Bvc2VkIGJlZm9yZSBvciB3b3VsZCBpdCBiZSBtb3JlIHByZWZlcmFibGUgdG8g
ZG9uJ3QgYXVkaXQgYWNjZXNzIHRvIA0KY2VydF90IGZpbGVzIGFsb25nIHdpdGggZGlyZWN0b3Jp
ZXM/DQoNClNvIGNoYW5nZSB0aGUgaW50ZXJmYWNlIHRvIG1pc2NmaWxlc19kb250YXVkaXRfcmVh
ZF9nZW5lcmljX2NlcnRzIGFuZCANCmluY2x1ZGUgZG9udGF1ZGl0IHJ1bGVzIGZvciBsaXN0X2Rp
cl9wZXJtcywgcmVhZF9maWxlX3Blcm1zLCANCnJlYWRfbG5rX2ZpbGVfcGVybXMuDQoNCg==