From 6297e8a5a7a71d888483a4df7bb3aa1dbd5081eb Mon Sep 17 00:00:00 2001 From: chenpaul Date: Mon, 10 May 2021 15:23:43 +0800 Subject: [PATCH] Sniffer Logger: Add dontaudit getattr for sysfs_wifi 05-10 15:04:37.376 12958 12958 I auditd : type=1400 audit(0.0:14): avc: denied { getattr } for comm="wifi_sniffer" path="/sys/wifi/firmware_path" dev="sysfs" ino=81201 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0 tclass=file permissive=0 Bug: 187583019 Test: Sniffer Logger is workable Change-Id: I6bce0bb58d951b6be39f58340b6418b328ffe386 --- whitechapel/vendor/google/wifi_sniffer.te | 1 + 1 file changed, 1 insertion(+) diff --git a/whitechapel/vendor/google/wifi_sniffer.te b/whitechapel/vendor/google/wifi_sniffer.te index b576f158..491162a0 100644 --- a/whitechapel/vendor/google/wifi_sniffer.te +++ b/whitechapel/vendor/google/wifi_sniffer.te @@ -2,4 +2,5 @@ userdebug_or_eng(` allow wifi_sniffer sysfs_wifi:dir search; allow wifi_sniffer sysfs_wifi:file w_file_perms; allow wifi_sniffer self:capability sys_module; + dontaudit wifi_sniffer sysfs_wifi:file getattr; ')