From 5d60f04e5d43d084992d59c38a631a034b88e715 Mon Sep 17 00:00:00 2001
From: Colin Cross <ccross@android.com>
Date: Wed, 9 Jul 2014 16:35:30 -0700
Subject: [PATCH] sepolicy: allow system server to remove cgroups

Bug: 15313911
Change-Id: Ib7d39561a0d52632929d063a7ab97b6856f28ffe
---
 system_server.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/system_server.te b/system_server.te
index a049e3525..3b3316052 100644
--- a/system_server.te
+++ b/system_server.te
@@ -385,6 +385,9 @@ allow system_server keystore:keystore_key {
 allow system_server persistent_data_block_device:blk_file rw_file_perms;
 allow system_server block_device:dir search;
 
+# Clean up old cgroups
+allow system_server cgroup:dir { remove_name rmdir };
+
 ###
 ### Neverallow rules
 ###
-- 
GitLab