From 1a4e01ef9e1639dc7391ec98e18efd970c7bde38 Mon Sep 17 00:00:00 2001 From: Richard Chang Date: Mon, 15 Jul 2024 04:23:15 +0000 Subject: [PATCH] sepolicy: allow powerhal to access vendor_mm dir Error log: auditd : type=1400 audit(0.0:79): avc: denied { search } for comm="NodeLooperThrea" name="vendor_mm" dev="sysfs" ino=56518 scontext=u:r:hal_power_default:s0 tcontext=u:object_r:sysfs_vendor_mm:s0 tclass=dir permissive=0 Bug: 322916612 Test: check avc logs Flag: EXEMPT bugfix Change-Id: I0fa6ba0a11551646d76b65ec764b25cd697d0364 --- performance/sepolicy/hal_power_default.te | 1 + 1 file changed, 1 insertion(+) diff --git a/performance/sepolicy/hal_power_default.te b/performance/sepolicy/hal_power_default.te index 763862d..309e8f7 100644 --- a/performance/sepolicy/hal_power_default.te +++ b/performance/sepolicy/hal_power_default.te @@ -1,2 +1,3 @@ allow hal_power_default sysfs_pakills:file rw_file_perms; allow hal_power_default sysfs_pakills:dir r_dir_perms; +r_dir_file(hal_power_default, sysfs_vendor_mm);