Written by: Martin Orr

Dontaudit consolekit_t calling setfscreate
This is for sed -i, run by on session remove by
/usr/lib/ConsoleKit/run-session.d/pam-foreground-compat.ck
It doesn't affect the type of the file, in /var/run/console

Index: policy/modules/services/consolekit.te
===================================================================
--- policy/modules/services/consolekit.te.orig
+++ policy/modules/services/consolekit.te
@@ -22,6 +22,7 @@
 
 allow consolekit_t self:capability { chown setuid setgid sys_tty_config dac_override sys_nice sys_ptrace };
 allow consolekit_t self:process { getsched signal };
+dontaudit consolekit_t self:process setfscreate;
 allow consolekit_t self:fifo_file rw_fifo_file_perms;
 allow consolekit_t self:unix_stream_socket create_stream_socket_perms;
 allow consolekit_t self:unix_dgram_socket create_socket_perms;