allow kernel self:system syslog_read;

# Allow kernel to read kmsg_device
allow kernel kmsg_device:chr_file r_file_perms;

# Allow kernel to search in block_device
allow kernel block_device:dir search;