summaryrefslogtreecommitdiff
path: root/sepolicy/kernel.te
diff options
context:
space:
mode:
Diffstat (limited to 'sepolicy/kernel.te')
-rw-r--r--sepolicy/kernel.te6
1 files changed, 5 insertions, 1 deletions
diff --git a/sepolicy/kernel.te b/sepolicy/kernel.te
index 3fad122..176d6f6 100644
--- a/sepolicy/kernel.te
+++ b/sepolicy/kernel.te
@@ -2,6 +2,10 @@
allow kernel device:chr_file { create setattr };
allow kernel device:dir { add_name create write };
allow kernel self:capability mknod;
-allow kernel vendor_file:file { open read };
+allow kernel vendor_file:file { open read getattr};
+allow kernel vendor_file:dir read;
allow kernel self:system module_request;
allow vendor_init kernel:system module_request;
+allow kernel sepolicy_file:file getattr;
+allow kernel system_bootstrap_lib_file:dir getattr;
+allow kernel system_bootstrap_lib_file:file getattr;
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-03 13:35:12 +0000