From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Sat, 21 Apr 2012 18:17:43 +0200
Subject: [refpolicy] [PATCH 1/1] Adding dontaudits for xserver
In-Reply-To: <20120421161615.GB28496@siphos.be>
References: <20120421161615.GB28496@siphos.be>
Message-ID: <20120421161742.GD28496@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com


Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
---
 policy/modules/services/xserver.te |    2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)

diff --git a/policy/modules/services/xserver.te b/policy/modules/services/xserver.te
index e92dddf..259a67b 100644
--- a/policy/modules/services/xserver.te
+++ b/policy/modules/services/xserver.te
@@ -635,6 +635,8 @@ allow xserver_t xauth_home_t:file read_file_perms;
 manage_files_pattern(xserver_t, xserver_log_t, xserver_log_t)
 logging_log_filetrans(xserver_t, xserver_log_t, file)
 
+domain_dontaudit_search_all_domains_state(xserver_t)
+
 kernel_read_system_state(xserver_t)
 kernel_read_device_sysctls(xserver_t)
 kernel_read_modprobe_sysctls(xserver_t)
-- 
1.7.3.4