Amit Pundir | 4e37582 | 2019-04-18 16:46:10 +0530 | [diff] [blame] | 1 | # audit2allow |
| 2 | allow kernel device:chr_file { create setattr }; |
| 3 | allow kernel device:dir { add_name create write }; |
| 4 | allow kernel self:capability mknod; |
John Stultz | a58e74e | 2022-04-14 23:17:14 +0000 | [diff] [blame^] | 5 | allow kernel vendor_file:file { open read getattr}; |
| 6 | allow kernel vendor_file:dir read; |
John Stultz | c23e5e6 | 2019-10-25 04:40:29 +0000 | [diff] [blame] | 7 | allow kernel self:system module_request; |
| 8 | allow vendor_init kernel:system module_request; |
John Stultz | a58e74e | 2022-04-14 23:17:14 +0000 | [diff] [blame^] | 9 | allow kernel sepolicy_file:file getattr; |
| 10 | allow kernel system_bootstrap_lib_file:dir getattr; |
| 11 | allow kernel system_bootstrap_lib_file:file getattr; |