通过学习模式得到policy后,运行"gradm -E"启动RBAC,提示报错:
warning: denied access to /proc/1/stat by the subject /usr/local/bin/redis-server,
parent /usr/bin/docker-containerd-shim
policy的相关部分:
subject /usr/bin/docker-containerd-shim {
...
/proc
/proc/1/stat rw
...
}
subject /usr/local/bin/redis-server o {
/
/proc/1/stat rw
}
尝试了好多的方法,没有丝毫用。希望有大神指点一下