From 053f6a200a53d2873dac08009d32d40e462fe57d Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Apr 19 2005 18:56:47 +0000
Subject: add dontaudit fs getattr



---

diff --git a/refpolicy/policy/modules/kernel/filesystem.if b/refpolicy/policy/modules/kernel/filesystem.if
index 078fc71..470d732 100644
--- a/refpolicy/policy/modules/kernel/filesystem.if
+++ b/refpolicy/policy/modules/kernel/filesystem.if
@@ -101,6 +101,20 @@ class filesystem getattr;
 
 ########################################
 #
+# filesystem_ignore_read_persistent_filesystem_stats(domain,[`optional'])
+#
+define(`filesystem_ignore_read_persistent_filesystem_stats',`
+requires_block_template(filesystem_ignore_read_persistent_filesystem_stats_depend,$2)
+dontaudit $1 fs_t:filesystem getattr;
+')
+
+define(`filesystem_ignore_read_persistent_filesystem_stats_depend',`
+type fs_t;
+class filesystem getattr;
+')
+
+########################################
+#
 # filesystem_mount_automount_filesystem(domain,[`optional'])
 #
 define(`filesystem_mount_automount_filesystem',`