From b5860610b400ebaf40c8fbbef8ae4a467e239edb Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Thu, 28 Apr 2005 15:52:42 +0000 Subject: [PATCH] missed that sysctl_dev is a dir too --- refpolicy/policy/modules/kernel/kernel.if | 1 + 1 file changed, 1 insertion(+) diff --git a/refpolicy/policy/modules/kernel/kernel.if b/refpolicy/policy/modules/kernel/kernel.if index 0ed2dc53..77f40374 100644 --- a/refpolicy/policy/modules/kernel/kernel.if +++ b/refpolicy/policy/modules/kernel/kernel.if @@ -497,6 +497,7 @@ define(`kernel_read_device_sysctl',` requires_block_template(kernel_read_device_sysctl_depend,$2) allow $1 proc_t:dir search; allow $1 sysctl_t:dir { getattr search read }; +allow $1 sysctl_dev_t:dir { getattr search read }; allow $1 sysctl_dev_t:file { getattr read }; ')