sepolicy: rules for uid/pid cgroups v2 hierarchy Bug: 168907513 Test: verified the correct working of the v2 uid/pid hierarchy in normal and recovery modes This reverts commit aa8bb3a29b92a342c42c802edac269da5984d1df. Change-Id: Ib344d500ea49b86e862e223ab58a16601eebef47

commit: aa4ce95c6f601c5fa901a12d9f366440bf56c7e2 [log] [tgz]
author: Marco Ballesio <balejs@google.com> Thu Feb 11 15:18:11 2021 -0800
committer: Marco Ballesio <balejs@google.com> Thu Feb 11 23:40:38 2021 +0000
tree: 207658ec84cfd29a88b35b9f82215797beee7f65
parent: e8d2732651edfaf9f32df039216cbf54f247e9ec [diff] [blame]
diff --git a/public/hal_wifi_supplicant.te b/public/hal_wifi_supplicant.te
index 5fbe9f2..e19ad1c 100644
--- a/public/hal_wifi_supplicant.te
+++ b/public/hal_wifi_supplicant.te

@@ -13,6 +13,7 @@
 allow hal_wifi_supplicant kernel:system module_request;
 allow hal_wifi_supplicant self:global_capability_class_set { setuid net_admin setgid net_raw };
 allow hal_wifi_supplicant cgroup:dir create_dir_perms;
+allow hal_wifi_supplicant cgroup_v2:dir create_dir_perms;
 allow hal_wifi_supplicant self:netlink_route_socket nlmsg_write;
 allow hal_wifi_supplicant self:netlink_socket create_socket_perms_no_ioctl;
 allow hal_wifi_supplicant self:netlink_generic_socket create_socket_perms_no_ioctl;
commit	aa4ce95c6f601c5fa901a12d9f366440bf56c7e2	[log] [tgz]
author	Marco Ballesio <balejs@google.com>	Thu Feb 11 15:18:11 2021 -0800
committer	Marco Ballesio <balejs@google.com>	Thu Feb 11 23:40:38 2021 +0000
tree	207658ec84cfd29a88b35b9f82215797beee7f65
parent	e8d2732651edfaf9f32df039216cbf54f247e9ec [diff] [blame]