From 365dd03cb100ef4a2bad81f5072a6ea517e1e4a0 Mon Sep 17 00:00:00 2001
From: Andreas Gampe <agampe@google.com>
Date: Wed, 6 Dec 2017 10:17:32 -0800
Subject: [PATCH] Sepolicy: Give perfprofd access to kernel notes

Simpleperf reads kernel notes.

Bug: 70275668
Test: m
Test: manual
Change-Id: I1a2403c959464586bd52f0398ece0f02e3980fc4
---
 public/perfprofd.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/public/perfprofd.te b/public/perfprofd.te
index 6ef600b2b..457196903 100644
--- a/public/perfprofd.te
+++ b/public/perfprofd.te
@@ -33,6 +33,9 @@ userdebug_or_eng(`
   # perfprofd inspects /sys/power/wake_unlock
   wakelock_use(perfprofd);
 
+  # simpleperf reads kernel notes.
+  allow perfprofd sysfs_kernel_notes:file r_file_perms;
+
   # simpleperf uses ioctl() to turn on kernel perf events measurements
   allow perfprofd self:global_capability_class_set sys_admin;
 
-- 
GitLab