From 65dfac60833344e22fabf7895857751b46ea9316 Mon Sep 17 00:00:00 2001
From: kleidione Freitas <kleidione@gmail.com>
Date: Thu, 16 Jan 2025 13:19:12 -0300
Subject: [PATCH] garnet: sepolicy: Allow hal_perf to get attributes from proc
 files

- avc: denied { getattr } for path="/proc/1632/cpuset" dev="proc" ino=118908 scontext=u:r:vendor_hal_perf_default:s0 tcontext=u:r:hal_graphics_composer_default:s0 tclass=file permissive=0

Signed-off-by: kleidione <kleidione@gmail.com>
---
 sepolicy/vendor/vendor_hal_perf_default.te | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/sepolicy/vendor/vendor_hal_perf_default.te b/sepolicy/vendor/vendor_hal_perf_default.te
index b71af2c..6c34d6a 100644
--- a/sepolicy/vendor/vendor_hal_perf_default.te
+++ b/sepolicy/vendor/vendor_hal_perf_default.te
@@ -1,3 +1,4 @@
 allow vendor_hal_perf_default hal_graphics_composer_default:dir { search };
 allow vendor_hal_perf_default hal_graphics_composer_default:process { signal getpgid };
-allow vendor_hal_perf_default hal_graphics_composer_default:file { open read write };
\ No newline at end of file
+allow vendor_hal_perf_default hal_graphics_composer_default:file { open read write getattr };
+allow vendor_hal_perf_default proc_type:file { getattr };
\ No newline at end of file