From c3dff2e0a2bee497e14ece78f9a968232229ce2f Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Wed, 18 May 2005 13:19:51 +0000
Subject: [PATCH] add device_node:{ chr_file blk_file } getattr;

---
 refpolicy/policy/modules/kernel/devices.if | 29 ++++++++++++++++++++++
 1 file changed, 29 insertions(+)

diff --git a/refpolicy/policy/modules/kernel/devices.if b/refpolicy/policy/modules/kernel/devices.if
index ce95b8b9..3a94fc21 100644
--- a/refpolicy/policy/modules/kernel/devices.if
+++ b/refpolicy/policy/modules/kernel/devices.if
@@ -74,6 +74,20 @@ type device_t;
 class dir { getattr read search };
 ')
 
+########################################
+#
+# devices_get_generic_block_device_attributes(domain)
+#
+define(`devices_get_generic_block_device_attributes',`
+requires_block_template(`$0'_depend)
+allow $1 device_t:dir { getattr search read };
+allow $1 device_t:blk_file getattr;
+')
+
+define(`devices_get_generic_block_device_attributes_depend',`
+type device_t;
+class blk_file getattr;
+')
 
 ########################################
 #
@@ -89,6 +103,21 @@ type device_t;
 class blk_file getattr;
 ')
 
+########################################
+#
+# devices_get_generic_character_device_attributes(domain)
+#
+define(`devices_get_generic_character_device_attributes',`
+requires_block_template(`$0'_depend)
+allow $1 device_t:dir { getattr search read };
+allow $1 device_t:chr_file getattr;
+')
+
+define(`devices_get_generic_character_device_attributes_depend',`
+type device_t;
+class chr_file getattr;
+')
+
 ########################################
 #
 # devices_ignore_get_generic_character_device_attributes(domain)