hostname: do not audit attempts by hostname to read and write dhcpc udp sockets (looks like a leaked fd)

Signed-off-by: Dominick Grift <dominick.grift@gmail.com>

policy/modules/system/hostname.te

@@ -51,6 +51,7 @@ logging_send_syslog_msg(hostname_t)
 
 miscfiles_read_localization(hostname_t)
 
+sysnet_dontaudit_rw_dhcpc_udp_sockets(hostname_t)
 sysnet_dontaudit_rw_dhcpc_unix_stream_sockets(hostname_t)
 sysnet_read_config(hostname_t)
 sysnet_dns_name_resolve(hostname_t)

policy/modules/system/sysnetwork.if

@@ -45,6 +45,25 @@ interface(`sysnet_run_dhcpc',`
 	roleattribute $2 dhcpc_roles;
 ')
 
+########################################
+## <summary>
+##	Do not audit attempts to read and
+##	write dhcpc udp socket descriptors.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain to not audit.
+##	</summary>
+## </param>
+#
+interface(`sysnet_dontaudit_rw_dhcpc_udp_sockets',`
+	gen_require(`
+		type dhcpc_t;
+	')
+
+	dontaudit $1 dhcpc_t:udp_socket { read write };
+')
+
 ########################################
 ## <summary>
 ##	Do not audit attempts to use