From: aranea@aixah.de (Luis Ressel)
Date: Tue, 12 Sep 2017 04:11:16 +0200
Subject: [refpolicy] [PATCH 2/2] kernel: Add map permission to the dev_{read,
	write}_sound* interfaces
In-Reply-To: <20170912021116.14272-1-aranea@aixah.de>
References: <20170912021116.14272-1-aranea@aixah.de>
Message-ID: <20170912021116.14272-2-aranea@aixah.de>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

sds already added it to dev_read_sound_mixer, but it's also needed in
the other interfaces.
---
 policy/modules/kernel/devices.if | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/policy/modules/kernel/devices.if b/policy/modules/kernel/devices.if
index b8f85c2ad..4c47709ff 100644
--- a/policy/modules/kernel/devices.if
+++ b/policy/modules/kernel/devices.if
@@ -3751,6 +3751,7 @@ interface(`dev_read_sound',`
 	')
 
 	read_chr_files_pattern($1, device_t, sound_device_t)
+	allow $1 sound_device_t:chr_file map;
 ')
 
 ########################################
@@ -3769,6 +3770,7 @@ interface(`dev_write_sound',`
 	')
 
 	write_chr_files_pattern($1, device_t, sound_device_t)
+	allow $1 sound_device_t:chr_file map;
 ')
 
 ########################################
@@ -3806,6 +3808,7 @@ interface(`dev_write_sound_mixer',`
 	')
 
 	write_chr_files_pattern($1, device_t, sound_device_t)
+	allow $1 sound_device_t:chr_file map;
 ')
 
 ########################################
-- 
2.14.1