From ae20791517186e7115068fc076684aad1d81ea8f Mon Sep 17 00:00:00 2001
From: Tri Vo <trong@google.com>
Date: Wed, 13 Dec 2017 14:37:07 -0800
Subject: [PATCH] perfprofd: allow traversing sysfs directories.

Bug: 70275668
Test: walleye builds, boots.
This change only expands the existing permissions, so shouldn't regress
runtime behavior.
Change-Id: I36e63f11d78998a88e3f8d1e6913e20762a359af
---
 public/perfprofd.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/public/perfprofd.te b/public/perfprofd.te
index 28465929f..cb4a14409 100644
--- a/public/perfprofd.te
+++ b/public/perfprofd.te
@@ -7,6 +7,9 @@ userdebug_or_eng(`
   typeattribute perfprofd coredomain;
   typeattribute perfprofd mlstrustedsubject;
 
+  # perfprofd access to sysfs directory structure.
+  allow perfprofd sysfs_type:dir search;
+
   # perfprofd needs to control CPU hot-plug in order to avoid kernel
   # perfevents problems in cases where CPU goes on/off during measurement;
   # this means read access to /sys/devices/system/cpu/possible
-- 
GitLab