From 2f063edd881cf036474cd5c49af75d6420f9c267 Mon Sep 17 00:00:00 2001
From: "Sugar, David" <dsugar@tresys.com>
Date: Mon, 25 Feb 2019 23:37:46 +0000
Subject: [PATCH] Allow AIDE to sendto kernel datagram socket

type=AVC msg=audit(1550799594.394:205): avc:  denied  { sendto } for  pid=7182 comm="aide" path="/dev/log" scontext=system_u:system_r:aide_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_dgram_socket permissive=1

Signed-off-by: Dave Sugar <dsugar@tresys.com>
---
 policy/modules/admin/aide.te | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/policy/modules/admin/aide.te b/policy/modules/admin/aide.te
index 9d3c19ce7..6297b60e8 100644
--- a/policy/modules/admin/aide.te
+++ b/policy/modules/admin/aide.te
@@ -35,6 +35,8 @@ logging_log_filetrans(aide_t, aide_log_t, file)
 files_read_all_files(aide_t)
 files_read_all_symlinks(aide_t)
 
+kernel_dgram_send(aide_t)
+
 logging_send_audit_msgs(aide_t)
 logging_send_syslog_msg(aide_t)