Merge "sepolicy: Allow lmkd access to psi procfs nodes"
This commit is contained in:
Suren Baghdasaryan
Gerrit Code Review
commit
9902c67cfa
6 changed files with 22 additions and 0 deletions
|
|
@ -481,6 +481,9 @@
|
|||
proc_panic
|
||||
proc_pid_max
|
||||
proc_pipe_conf
|
||||
proc_pressure_cpu
|
||||
proc_pressure_io
|
||||
proc_pressure_mem
|
||||
proc_random
|
||||
proc_sched
|
||||
proc_slabinfo
|
||||
|
|
|
|||
|
|
@ -1196,6 +1196,9 @@
|
|||
proc_panic
|
||||
proc_pid_max
|
||||
proc_pipe_conf
|
||||
proc_pressure_cpu
|
||||
proc_pressure_io
|
||||
proc_pressure_mem
|
||||
proc_random
|
||||
proc_sched
|
||||
proc_slabinfo
|
||||
|
|
|
|||
|
|
@ -1378,6 +1378,9 @@
|
|||
(typeattributeset proc_28_0
|
||||
( proc
|
||||
proc_keys
|
||||
proc_pressure_cpu
|
||||
proc_pressure_io
|
||||
proc_pressure_mem
|
||||
proc_slabinfo))
|
||||
(typeattributeset proc_abi_28_0 (proc_abi))
|
||||
(typeattributeset proc_asound_28_0 (proc_asound))
|
||||
|
|
|
|||
|
|
@ -24,6 +24,9 @@ genfscon proc /net/xt_qtaguid/ctrl u:object_r:proc_qtaguid_ctrl:s0
|
|||
genfscon proc /net/xt_qtaguid/ u:object_r:proc_qtaguid_stat:s0
|
||||
genfscon proc /cpuinfo u:object_r:proc_cpuinfo:s0
|
||||
genfscon proc /pagetypeinfo u:object_r:proc_pagetypeinfo:s0
|
||||
genfscon proc /pressure/cpu u:object_r:proc_pressure_cpu:s0
|
||||
genfscon proc /pressure/io u:object_r:proc_pressure_io:s0
|
||||
genfscon proc /pressure/memory u:object_r:proc_pressure_mem:s0
|
||||
genfscon proc /slabinfo u:object_r:proc_slabinfo:s0
|
||||
genfscon proc /softirqs u:object_r:proc_timer:s0
|
||||
genfscon proc /stat u:object_r:proc_stat:s0
|
||||
|
|
|
|||
|
|
@ -44,6 +44,9 @@ type proc_panic, fs_type, proc_type;
|
|||
type proc_perf, fs_type, proc_type;
|
||||
type proc_pid_max, fs_type, proc_type;
|
||||
type proc_pipe_conf, fs_type, proc_type;
|
||||
type proc_pressure_cpu, fs_type, proc_type;
|
||||
type proc_pressure_io, fs_type, proc_type;
|
||||
type proc_pressure_mem, fs_type, proc_type;
|
||||
type proc_random, fs_type, proc_type;
|
||||
type proc_sched, fs_type, proc_type;
|
||||
type proc_slabinfo, fs_type, proc_type;
|
||||
|
|
|
|||
|
|
@ -49,6 +49,13 @@ allow lmkd proc_sysrq:file rw_file_perms;
|
|||
# Read /proc/meminfo
|
||||
allow lmkd proc_meminfo:file r_file_perms;
|
||||
|
||||
# Read /proc/pressure/cpu and /proc/pressure/io
|
||||
allow lmkd proc_pressure_cpu:file r_file_perms;
|
||||
allow lmkd proc_pressure_io:file r_file_perms;
|
||||
|
||||
# Read/Write /proc/pressure/memory
|
||||
allow lmkd proc_pressure_mem:file rw_file_perms;
|
||||
|
||||
# Allow lmkd to write to statsd.
|
||||
unix_socket_send(lmkd, statsdw, statsd)
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue