Patch to dontaudit logrotate searching avahi pid directory from Dan Walsh.

Changelog

@@ -1,5 +1,6 @@
+- Patch to dontaudit logrotate searching avahi pid directory from Dan Walsh.
 - Patch to allow insmod to mount kvmfs and dontaudit rw unconfined_t pipes
-  to handle usage from userhelper.
+  to handle usage from userhelper from Dan Walsh.
 - Patch to allow amavis to read spamassassin libraries from Dan Walsh.
 - Patch to allow slocate to getattr other filesystems and directories on those
   filesystems from Dan Walsh.

policy/modules/admin/logwatch.te

@@ -1,5 +1,5 @@
 
-policy_module(logwatch,1.4.0)
+policy_module(logwatch,1.4.1)
 
 #################################
 #
@@ -94,6 +94,10 @@ optional_policy(`
 	apache_read_log(logwatch_t)
 ')
 
+optional_policy(`
+	avahi_dontaudit_search_pid(logwatch_t)
+')
+
 optional_policy(`
 	bind_read_config(logwatch_t)
 	bind_read_zone(logwatch_t)

policy/modules/services/avahi.if

@@ -39,3 +39,21 @@ interface(`avahi_stream_connect',`
 	files_search_pids($1)
 	stream_connect_pattern($1,avahi_var_run_t,avahi_var_run_t,avahi_t)
 ')
+
+########################################
+## <summary>
+##	Do not audit attempts to search the avahi pid directory.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`avahi_dontaudit_search_pid',`
+	gen_require(`
+		type avahi_var_run_t;
+	')
+
+	dontaudit $1 avahi_var_run_t:dir search_dir_perms;
+')

policy/modules/services/avahi.te

@@ -1,5 +1,5 @@
 
-policy_module(avahi,1.5.0)
+policy_module(avahi,1.5.1)
 
 ########################################
 #