devices: Add type for infiniband devices.

Signed-off-by: Chris PeBenito <Christopher.PeBenito@microsoft.com>
Signed-off-by: Jason Zaman <perfinion@gentoo.org>

2 files changed, 8 insertions, 0 deletions

diff --git a/policy/modules/kernel/devices.fc b/policy/modules/kernel/devices.fc
index 7fa4a971..19b06ab7 100644
--- a/policy/modules/kernel/devices.fc
+++ b/policy/modules/kernel/devices.fc
@@ -165,6 +165,8 @@ ifdef(`distro_suse', `
 
 /dev/dvb/.*		-c	gen_context(system_u:object_r:v4l_device_t,s0)
 
+/dev/infiniband/.*      -c      gen_context(system_u:object_r:infiniband_device_t,s0)
+
 /dev/input/.*		-c	gen_context(system_u:object_r:event_device_t,s0)
 /dev/input/m.*		-c	gen_context(system_u:object_r:mouse_device_t,s0)
 /dev/input/.*mouse.*	-c	gen_context(system_u:object_r:mouse_device_t,s0)
diff --git a/policy/modules/kernel/devices.te b/policy/modules/kernel/devices.te
index 06841950..8ac7c212 100644
--- a/policy/modules/kernel/devices.te
+++ b/policy/modules/kernel/devices.te
@@ -123,6 +123,12 @@ type gpiochip_device_t;
 dev_node(gpiochip_device_t)
 
 #
+# Type for /dev/infiniband/*
+#
+type infiniband_device_t;
+dev_node(infiniband_device_t)
+
+#
 # Type for /dev/ipmi/0
 #
 type ipmi_device_t;