policy_module(bootloader_additional, 0.0.1)

require {
  type bootloader_t;
}

kernel_read_unlabeled_files(bootloader_t)