From f4ae8df39d5f6158a4d783e92b0d4bfefdb9f83f Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Thu, 4 May 2017 14:12:56 +0000
Subject: [PATCH] Fix up policy source and add EL6 compiled version

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
---
 roles/base/files/selinux/rsyslog-audit.pp | Bin 0 -> 7609 bytes
 roles/base/files/selinux/rsyslog-audit.te |  13 ++++---------
 2 files changed, 4 insertions(+), 9 deletions(-)
 create mode 100644 roles/base/files/selinux/rsyslog-audit.pp

diff --git a/roles/base/files/selinux/rsyslog-audit.pp b/roles/base/files/selinux/rsyslog-audit.pp
new file mode 100644
index 0000000000000000000000000000000000000000..f1a417ff5a9e3468abf151bf1e3bda637b57da36
GIT binary patch
literal 7609
zcmc&(O>ZN)5p}+^MuJ@O0|@vc0~+s6lGC2NyWT+t$$VhFlS>c?t!_$U+-fQ$+p>WC
zg&_NPbIQI~B-OO6(P+k-34vC#$zoOUv8q_4{{7#7{^v(0CnrC~^IJUM{q*GIUugRc
z>epYZKbx+<Q!i}Ox0)oUcu4+BJS@M)<NU_AcK)R58xwwlhNl;wUE;M{IGztlSn@aD
zERAu$z>DnXI#eOJpQFlNuPawCpqUgBu%5qXrqw^gHz|#+L%YKz(>h%>tW&;S>5hEz
zT=-_O)4%IFOx&e>#h<s;*_-F^E7UW;%&QzH*fbNsGzp)iahV>UCnar!vzY{T94eVX
z7D!qul)o=g=aawL$8ssZ!w<jtWV-xjTUppn9t5zYxh%ea2pQx}`zy<3@xeNutV1>^
zw&ik(3ZHk;fJDk=dh=D*IUj!W$-J^|yX|k&14E@;rZ-=YsTXV>Rps2MGaQdo%MX2o
zK9#@on?9fYgF|yW>$LyU#&aLvwD+w|mmO$-P`*R#IsIRhv(qzmWgNWQx{X>PylB^X
zHNxc2Pucmpa@A6!)qjq!rx&WR%gS^rY*rc#zq?Si?E+e~lTne=dG7x`25i~KF$bqX
zk>BWf-&Rf$?LsAf{!lsz>m$@T6%4L7%c*Tmty<IF6dJYN&E(^2MTkaky7La}(x}&F
zrTwSRo<Dn4C^j=Q`+wKW+xkWaU#P{FkFFNs`m%*&)#zJOYt`ANG^=U*@pX!3_0<Bt
zRl~L3qFKFgA04fz*)w_`-D475)p-+)?Y8SEE|DU|C`N-Ze4OOtPOs%%x0UxJ?a%43
zQn(C#XYO+Rh}Kau1=-n=MO1iE)y{e~vrhT73H8Esb2Zgrt#zlo?H$&7MYr8Rbk#Mg
zwN+D18B?THEhT?bzF)1Z3sm&5c#--H;;N>htgz5q9!SjeQg_1TST?=a3X#-wFo9WB
zYd==OD!U@uRoiaR<FyN_QcnM)M-)|4+OZ&drWU$g!E|PQS98EvdDCIW%Ri_!0<zL~
zE6#Z-AOQd~10TdMi1et{c1d;B=<NLSqvrh_As_Rd^`VC%gU-q?Y~MBjo^#nk9I^ER
z8IW1Ez-PpWHFn6EeKd<B;C_VIt&R`m9yQ@tX&th)EC46)n@9K$sxGs>;-<M2z-MZ$
zGfrG|0@>(U)wi%075YxB^0sPwttzklO4nv)5ZtF5q1{?BY!B<m;r3QLXAsEZs9_Pn
zzd2ULukYaAbx>1lTMa)~whzj}P&%5A)850dE}-JK3m8qOb>nHFSZb%&*4;ouZwpc^
zw}K}w;MESswa{LBRf8LeFBk?6!iEq*SqY9tBZ#<)wteh;^3dep@3CToUZTSvqi<#B
zf!<KeFU%}-qpn|$TjRsU#YN0Uq+J$;%?kZ0n5Cxe$AM<nVYNqubR1l-C*sEAS=IVf
zkBs2DjRj(z4Qf%{(oT#A{E5wEqQwIBWFq=B{c^d94$f8C1`EVs`uT-Yv;~Qe&>rTp
za&QU62`kFht%WJ>uGExCoq@gxN)4ifV`|uLk`@C@2Wz69(=)8Yx^mqJVEAgDk~h%;
z5r{pEqNy`Z^B~)yvk-uJ?d1;>b`JiM*aMA>Ehf0EZs2L%1^`2YS!LP}nBZJ@6CmtH
z{E^V6;4?FGH&zb*H1Qf>FIzuJuHNcf-NqJds&hS7e_hsoQX?|XtuxyH?U<;z0|J#`
z0<Q1ED80v&>9uUzw<c`Hd&LZV4%Y-~`0zyE={j%stoMOY>jPD0#ED@!fisafCfw+2
z*V_=7j~jdQ5cn5&G9)8rYFf+{ds*_9FZzIkN<h;7p&VWzfH^Fw#m<Z@mcd*CVsz|x
zgt7rt0Z^8y3V!r5x_S(55*=mrS^JD$T#sHpc^W}|SG3$Cf~)>O#9#`L;zbIGASK3X
zz+<`!se?E^e80wx5ORq*Bbjyp(7FadNMOhC)~>Z@7>PU<W{x-?^B%!|Q0riA3yZh~
zn2ldVXyUh;IlD~S7RnCJlJFY6_&~V6#2j&;qfaV2Z%QOL9@z@#C>bLs2SueEoK4XQ
z7-_&UsZ9A-Oj3Cm!tNR`3zVeD5X&s>zHz1fR?ettW49gBLD>_^(K}-mB2E_ggfX6p
zFSlPAjnJgAD<efLSwsasMW8Hnz*bEs{Gx4(!#nj9m6GCuOD5}V_hdNdmt@2K^^!F4
z2)3W#>QE<@NoR(nK;$f%UR9x*<DTLng-YSzI>4&;^r!AO9k!)goO<Sx)9~QBT_9}S
zb=xD=a@E?b#>j&L_Sc&+_D<5B7c-1K_q8}C8yn0gT2FbjNmf%V50Mumdp*P?u`t{Z
z2ieegeB({Anf5{F6oO{CJ0b@1JmwH3uZg#GVt6nxgR{^vV)9_x(EE$zsA`3)>3Hh0
zVuo4QJ(J?<K-DqMo2e@L!uTtMI_&p=hr_dN?1I7oC^+W(oh)k~f_ZA$`mv8c2Ay=Y
zj1dX@LBY1L_flgJEp3mZ9AWCaSQiJw?IMC%R(=mqy@dI6Pjd_)BI3wFiFxUFM}c0*
zc+A*%`Sh4cNn|OJ=1s%aHU>3QJV;)DXpRw*9eVLx{P7ZxIyhi0DnxPHnAt{oUMn1!
z!|@F56iF(M6z}4QWI?<P_Yb&GnByMefc<QVVR<+wXhcw^4Y-2Ac`t>>1H+^C*Ky1J
zi+cY0E7?=xcKe>$&r7{7b};UQlBRKgy4v19=UeS8A-zd-@6LHd_sL1v9^(7=!J`}|
z9*!XAeOI-(V83@oyGO<_>^hpV8qra=7lQYPP|$-*PDm*)H}8)S>)v|<iDBi<<L<Cw
zuR2&0{*uO5?b}x74Gy3q22hDzYiEMS9|v-40=tXGz?mfkhK4`s&2YSCW)Qoe>i1sD
BHnRW#

literal 0
HcmV?d00001

diff --git a/roles/base/files/selinux/rsyslog-audit.te b/roles/base/files/selinux/rsyslog-audit.te
index 31f3a22215..a8bf497c24 100644
--- a/roles/base/files/selinux/rsyslog-audit.te
+++ b/roles/base/files/selinux/rsyslog-audit.te
@@ -1,15 +1,10 @@
 module rsyslog-audit 1.0;
 
 require {
-        type audit_log_t;
-        class file search;
-}
-
-require {
-        type audit_log_t;
-        class file ioctl;
-        class file open;
-        class file read;
+	type auditd_log_t;
+	type syslogd_t;
+	class file { getattr ioctl open read };
+	class dir { getattr search };
 }
 
 #============= syslogd_t ==============