Merge "Allow init to stat the root directory of FUSE filesystems."

commit: b4d3c575b3e862d45b7ad11a3abd5a8a2c0bd40c [log] [tgz]
author: Treehugger Robot <treehugger-gerrit@google.com> Fri Feb 14 20:40:28 2020 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Fri Feb 14 20:40:28 2020 +0000
tree: 32eb103d726e5ce6707fc22897b0b6245a96747a
parent: 429ce33777ffd92d3b0538b718761a0584d5bfe8 [diff]
parent: a0fa53ead6783ac24512a3e235430e92b2739e57 [diff]
diff --git a/public/init.te b/public/init.te
index 19c7e4b..cfca727 100644
--- a/public/init.te
+++ b/public/init.te

@@ -574,6 +574,9 @@
 allow init system_bootstrap_lib_file:dir r_dir_perms;
 allow init system_bootstrap_lib_file:file { execute read open getattr map };
 
+# stat the root dir of fuse filesystems (for the mount handler)
+allow init fuse:dir { search getattr };
+
 ###
 ### neverallow rules
 ###
commit	b4d3c575b3e862d45b7ad11a3abd5a8a2c0bd40c	[log] [tgz]
author	Treehugger Robot <treehugger-gerrit@google.com>	Fri Feb 14 20:40:28 2020 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Fri Feb 14 20:40:28 2020 +0000
tree	32eb103d726e5ce6707fc22897b0b6245a96747a
parent	429ce33777ffd92d3b0538b718761a0584d5bfe8 [diff]
parent	a0fa53ead6783ac24512a3e235430e92b2739e57 [diff]