From b02a5d4b558fd92a876bb1a4677fb3ace2ecdf4c Mon Sep 17 00:00:00 2001
From: Laurent Bigonville <bigon@bigon.be>
Date: Wed, 16 Dec 2015 19:19:30 +0100
Subject: [PATCH] Allow syslogd_t to read sysctl_vm_overcommit_t

---
 policy/modules/system/logging.te | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/policy/modules/system/logging.te b/policy/modules/system/logging.te
index b3f0ed7c3..53b896d0d 100644
--- a/policy/modules/system/logging.te
+++ b/policy/modules/system/logging.te
@@ -418,7 +418,8 @@ kernel_read_kernel_sysctls(syslogd_t)
 kernel_read_proc_symlinks(syslogd_t)
 # Allow access to /proc/kmsg for syslog-ng
 kernel_read_messages(syslogd_t)
-kernel_read_vm_sysctls(syslogd_t)
+# rsyslog
+kernel_read_vm_overcommit_sysctl(syslogd_t)
 kernel_clear_ring_buffer(syslogd_t)
 kernel_change_ring_buffer_level(syslogd_t)
 # Read ring buffer for journald