From: Dan Walsh <dwalsh@redhat.com>
Date: Tue, 20 Dec 2011 17:05:25 +0000 (+0000)
Subject: device_t should be a device node, so that any app that uses a _add_devices interface... 
X-Git-Tag: 000~12
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=cf1a4acabd6ef3d0a7c115208ebec2a0cfaf108e;p=people%2Fstevee%2Fselinux-policy.git

device_t should be a device node, so that any app that uses a _add_devices interface can do that access to devices that we did not know about
---

diff --git a/policy/modules/kernel/devices.te b/policy/modules/kernel/devices.te
index 8f727be3..d8c1d48f 100644
--- a/policy/modules/kernel/devices.te
+++ b/policy/modules/kernel/devices.te
@@ -20,6 +20,7 @@ files_mountpoint(device_t)
 files_associate_tmp(device_t)
 fs_type(device_t)
 fs_use_trans devtmpfs gen_context(system_u:object_r:device_t,s0);
+dev_node(device_t)
 
 #
 # Type for /dev/agpgart