cbd: Fix avc errors am: 6247ff69b2
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13816040 MUST ONLY BE SUBMITTED BY AUTOMERGER Change-Id: Ibf0d222fc8bafcdaa0b7b8c5fe861749a6192bc6
This commit is contained in:
SalmaxChang
Automerger Merge Worker
commit
2b90406669
2 changed files with 6 additions and 8 deletions
|
|
@ -1,8 +1,3 @@
|
|||
# b/171267363
|
||||
dontaudit cbd cbd:capability {setuid };
|
||||
# b/178331928
|
||||
dontaudit cbd mnt_vendor_file:dir { search };
|
||||
dontaudit cbd mnt_vendor_file:dir { search };
|
||||
# b/178979986
|
||||
dontaudit cbd unlabeled:dir { getattr };
|
||||
dontaudit cbd unlabeled:file { open };
|
||||
|
|
@ -19,6 +14,3 @@ dontaudit cbd unlabeled:file { open };
|
|||
# b/179198083
|
||||
dontaudit cbd unlabeled:file { ioctl };
|
||||
dontaudit cbd unlabeled:file { ioctl };
|
||||
# b/182219008
|
||||
dontaudit cbd persist_file:dir { search };
|
||||
dontaudit cbd persist_file:dir { search };
|
||||
|
|
|
|||
6
whitechapel/vendor/google/cbd.te
vendored
6
whitechapel/vendor/google/cbd.te
vendored
|
|
@ -6,6 +6,12 @@ set_prop(cbd, vendor_modem_prop)
|
|||
set_prop(cbd, vendor_cbd_prop)
|
||||
set_prop(cbd, vendor_rild_prop)
|
||||
|
||||
# Allow cbd to setuid from root to radio
|
||||
# TODO: confirming with vendor via b/182334947
|
||||
allow cbd self:capability { setgid setuid };
|
||||
|
||||
allow cbd mnt_vendor_file:dir r_dir_perms;
|
||||
|
||||
allow cbd kmsg_device:chr_file rw_file_perms;
|
||||
|
||||
allow cbd vendor_shell_exec:file execute_no_trans;
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue