If you’ve recently installed an application or applied some patches that begin to generate a lot of SELinux audit entries, you can update your local policy to accommodate your recent changes. Please note that this isn’t a substitute for ensuring your files have the appropriate selinux roles and types.
# grep avc /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp
