diff --git a/update_verifier.te b/update_verifier.te
index 65438d34219e1d13e612fa163a6c6fc8d969d5f6..d42c81fc21a92041053729e54c266ee618115cb4 100644
--- a/update_verifier.te
+++ b/update_verifier.te
@@ -5,4 +5,7 @@ type update_verifier_exec, exec_type, file_type;
 
 init_daemon_domain(update_verifier)
 
+# Allow update_verifier to reach block devices in /dev/block.
+allow update_verifier block_device:dir search;
+
 # TODO: Add rules to allow update_verifier to read system_block_device.