Merge "microdroid: Allow microdroid_manager to get local CID"

commit: d547a5a7a271078e3d8873170a8527431fa3317c [log] [tgz]
author: Treehugger Robot <treehugger-gerrit@google.com> Wed Nov 23 21:00:07 2022 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Wed Nov 23 21:00:07 2022 +0000
tree: 43c0e626ba2eaded6db06dc92db68e6bb70da77b
parent: 334640c993c4dff3e23ec393c8e72f1c58878d82 [diff]
parent: 9d8002113a5dc2cdd68f9aa592381ea417ac7682 [diff]
diff --git a/microdroid/system/private/microdroid_manager.te b/microdroid/system/private/microdroid_manager.te
index e1db47b..8765f75 100644
--- a/microdroid/system/private/microdroid_manager.te
+++ b/microdroid/system/private/microdroid_manager.te

@@ -51,6 +51,9 @@
 # Let microdroid_manager to create a vsock connection back to the host VM
 allow microdroid_manager self:vsock_socket { create_socket_perms_no_ioctl };
 
+# Allow microdroid_manager to read the CID of the VM.
+allow microdroid_manager vsock_device:chr_file { ioctl open read };
+
 # microdroid_manager is using bootstrap bionic
 use_bootstrap_libs(microdroid_manager)
commit	d547a5a7a271078e3d8873170a8527431fa3317c	[log] [tgz]
author	Treehugger Robot <treehugger-gerrit@google.com>	Wed Nov 23 21:00:07 2022 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Wed Nov 23 21:00:07 2022 +0000
tree	43c0e626ba2eaded6db06dc92db68e6bb70da77b
parent	334640c993c4dff3e23ec393c8e72f1c58878d82 [diff]
parent	9d8002113a5dc2cdd68f9aa592381ea417ac7682 [diff]