Update the dbus role template so that permissions to get

the attributes of the proc filesystem are included.

Signed-off-by: Guido Trentalancia <guido@trentalancia.com>
---
 policy/modules/contrib/dbus.if |    2 ++
 1 file changed, 2 insertions(+)

policy/modules/services/dbus.if

@@ -106,6 +106,8 @@ template(`dbus_role_template',`
 	allow $1_dbusd_t $3:process sigkill;
 	allow $1_dbusd_t session_dbusd_tmp_t:sock_file manage_sock_file_perms;
 
+	kernel_getattr_proc($1_dbusd_t)
+
 	corecmd_bin_domtrans($1_dbusd_t, $3)
 	corecmd_shell_domtrans($1_dbusd_t, $3)