From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Wed, 2 Feb 2011 20:37:20 +0100
Subject: [refpolicy] [PATCH 1/1] Allow mdadm to generate uevents (write to
 /sys/.../uevent) when raids are (dis)assembled
Message-ID: <20110202193720.GA12476@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

The mdadm application will write into /sys/.../uevent whenever arrays are
assembled or disassembled. 

Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
---
 policy/modules/system/raid.te |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/policy/modules/system/raid.te b/policy/modules/system/raid.te
index 09845c4..e5e61c5 100644
--- a/policy/modules/system/raid.te
+++ b/policy/modules/system/raid.te
@@ -42,7 +42,7 @@ kernel_getattr_core_if(mdadm_t)
 corecmd_exec_bin(mdadm_t)
 corecmd_exec_shell(mdadm_t)
 
-dev_read_sysfs(mdadm_t)
+dev_rw_sysfs(mdadm_t)
 # Ignore attempts to read every device file
 dev_dontaudit_getattr_all_blk_files(mdadm_t)
 dev_dontaudit_getattr_all_chr_files(mdadm_t)
-- 
1.7.3.4