Allow bpfloader to read fuse's bpf_prog number Bug: 202785178 Test: Along with rest of topic, file /sys/fs/bpf/prog_fuse_media_fuse_media appears on boot with fuse-bpf in kernel Merged-In: Ibccdf177c75fef0314c86319be3f0b0f249ce59d Change-Id: Ibccdf177c75fef0314c86319be3f0b0f249ce59d

commit: e3e26b7beaa31cec3e9be366002a514c2760575e [log] [tgz]
author: Paul Lawrence <paullawrence@google.com> Fri Nov 12 00:53:26 2021 +0000
committer: Paul Lawrence <paullawrence@google.com> Fri Nov 19 01:43:58 2021 +0000
tree: 7428d79a3eb8d093dc27ab8305e7dfc7f43a3e9e
parent: b8f39c49f5ef7f6d8e7ce5d31bb8f010eb16c0c2 [diff] [blame]
diff --git a/private/bpfloader.te b/private/bpfloader.te
index 25cfda4..2be2a4e 100644
--- a/private/bpfloader.te
+++ b/private/bpfloader.te

@@ -13,6 +13,8 @@
 
 allow bpfloader self:capability { chown sys_admin net_admin };
 
+allow bpfloader sysfs_fs_fuse_bpf:file r_file_perms;
+
 set_prop(bpfloader, bpf_progs_loaded_prop)
 
 ###
commit	e3e26b7beaa31cec3e9be366002a514c2760575e	[log] [tgz]
author	Paul Lawrence <paullawrence@google.com>	Fri Nov 12 00:53:26 2021 +0000
committer	Paul Lawrence <paullawrence@google.com>	Fri Nov 19 01:43:58 2021 +0000
tree	7428d79a3eb8d093dc27ab8305e7dfc7f43a3e9e
parent	b8f39c49f5ef7f6d8e7ce5d31bb8f010eb16c0c2 [diff] [blame]