diff --git a/tracking_denials/edgetpu_server.te b/tracking_denials/edgetpu_server.te new file mode 100644 index 00000000..61a19774 --- /dev/null +++ b/tracking_denials/edgetpu_server.te @@ -0,0 +1,9 @@ +# b/182706078 +dontaudit edgetpu_server tmpfs:file { getattr }; +dontaudit edgetpu_server tmpfs:file { getattr }; +dontaudit edgetpu_server tmpfs:file { map }; +dontaudit edgetpu_server tmpfs:file { read write }; +dontaudit edgetpu_server hal_camera_default:fd { use }; +dontaudit edgetpu_server hal_camera_default:fd { use }; +dontaudit edgetpu_server tmpfs:file { read write }; +dontaudit edgetpu_server tmpfs:file { map }; diff --git a/tracking_denials/gmscore_app.te b/tracking_denials/gmscore_app.te index 2ace5b71..3a274f4b 100644 --- a/tracking_denials/gmscore_app.te +++ b/tracking_denials/gmscore_app.te @@ -65,3 +65,6 @@ dontaudit gmscore_app bpf_progs_loaded_prop:file { getattr }; dontaudit gmscore_app bpf_progs_loaded_prop:file { open }; # b/180960879 dontaudit gmscore_app property_type:file *; +# b/182705863 +dontaudit gmscore_app modem_img_file:filesystem { getattr }; +dontaudit gmscore_app modem_img_file:filesystem { getattr }; diff --git a/tracking_denials/hal_bootctl_default.te b/tracking_denials/hal_bootctl_default.te new file mode 100644 index 00000000..27271c57 --- /dev/null +++ b/tracking_denials/hal_bootctl_default.te @@ -0,0 +1,3 @@ +# b/182705986 +dontaudit hal_bootctl_default devinfo_block_device:blk_file { open }; +dontaudit hal_bootctl_default devinfo_block_device:blk_file { read }; diff --git a/tracking_denials/hal_camera_default.te b/tracking_denials/hal_camera_default.te index 18ae1337..a4c93a04 100644 --- a/tracking_denials/hal_camera_default.te +++ b/tracking_denials/hal_camera_default.te @@ -13,3 +13,17 @@ dontaudit hal_camera_default dmabuf_system_heap_device:chr_file { open }; dontaudit hal_camera_default dmabuf_system_heap_device:chr_file { ioctl }; dontaudit hal_camera_default dmabuf_system_heap_device:chr_file { open }; dontaudit hal_camera_default dmabuf_system_heap_device:chr_file { ioctl }; +# b/182705901 +dontaudit hal_camera_default tmpfs:file { getattr }; +dontaudit hal_camera_default tmpfs:file { read }; +dontaudit hal_camera_default edgetpu_server:binder { call }; +dontaudit hal_camera_default tmpfs:file { write }; +dontaudit hal_camera_default tmpfs:file { map }; +dontaudit hal_camera_default tmpfs:file { read }; +dontaudit hal_camera_default tmpfs:file { getattr }; +dontaudit hal_camera_default tmpfs:file { map }; +dontaudit hal_camera_default tmpfs:file { write }; +dontaudit hal_camera_default edgetpu_server:binder { call }; +dontaudit hal_camera_default edgetpu_service:service_manager { find }; +dontaudit hal_camera_default edgetpu_server:fd { use }; +dontaudit hal_camera_default edgetpu_server:fd { use };