Page 1 of 1

modify whitelist for Sysfs restrictions

PostPosted: Sat Feb 07, 2015 3:48 pm
by martinvegter
I have the option
CONFIG_GRKERNSEC_SYSFS_RESTRICT
enabled in my kernel:

Code: Select all
 Filesystem Protections
   [*] Sysfs/debugfs restriction


In the help, I read that few directories have been whitelisted:
Code: Select all
/sys/fs/selinux
/sys/fs/fuse
/sys/devices/system/cpu


Being on a laptop, I would like to allow user to see battery status:

Code: Select all
/sys/class/power_supply/


How could I addd /sys/class/power_supply/ to the whitelist, so that user can actually see the battery icon or use acpi ?