Merge "crosvm doesn't need IPC_LOCK" into main
This commit is contained in:
Alan Stokes
Gerrit Code Review
commit
31b6d34f6b
1 changed files with 0 additions and 3 deletions
|
|
@ -45,9 +45,6 @@ allow crosvm {
|
|||
# Allow searching the directory where the composite disk images are.
|
||||
allow crosvm virtualizationservice_data_file:dir search;
|
||||
|
||||
# Allow crosvm to mlock guest memory.
|
||||
allow crosvm self:capability ipc_lock;
|
||||
|
||||
# Let crosvm access its control socket as created by VS.
|
||||
# read, write, getattr: listener socket polling
|
||||
# accept: listener socket accepting new connection
|
||||
|
|
|
|||
Loading…
Reference in a new issue