From a9157994c3e376ff6fc12be5f31502c0cd447744 Mon Sep 17 00:00:00 2001 From: SalmaxChang Date: Mon, 6 Jun 2022 20:36:44 +0800 Subject: [PATCH] modem_svc: Fix avc error avc: denied { write } for comm="modem_svc_sit" name="modem_stat" dev="dm-42" ino=331 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir permissive=0 Bug: 234844823 Change-Id: I51db41d73be317cc7fc84981ac5f04e254a360d0 Merged-In: I51db41d73be317cc7fc84981ac5f04e254a360d0 --- whitechapel/vendor/google/file_contexts | 2 +- whitechapel/vendor/google/modem_svc_sit.te | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/whitechapel/vendor/google/file_contexts b/whitechapel/vendor/google/file_contexts index 2a802f4b..4cb534ac 100644 --- a/whitechapel/vendor/google/file_contexts +++ b/whitechapel/vendor/google/file_contexts @@ -268,7 +268,7 @@ # modem_svc_sit files /vendor/bin/modem_svc_sit u:object_r:modem_svc_sit_exec:s0 -/data/vendor/modem_stat/debug\.txt u:object_r:modem_stat_data_file:s0 +/data/vendor/modem_stat(/.*)? u:object_r:modem_stat_data_file:s0 # modem mnt files /mnt/vendor/efs(/.*)? u:object_r:modem_efs_file:s0 diff --git a/whitechapel/vendor/google/modem_svc_sit.te b/whitechapel/vendor/google/modem_svc_sit.te index eeba9976..f664359d 100644 --- a/whitechapel/vendor/google/modem_svc_sit.te +++ b/whitechapel/vendor/google/modem_svc_sit.te @@ -14,6 +14,7 @@ allow modem_svc_sit radio_device:chr_file rw_file_perms; # Grant vendor radio and modem file/dir creation permission allow modem_svc_sit radio_vendor_data_file:dir create_dir_perms; allow modem_svc_sit radio_vendor_data_file:file create_file_perms; +allow modem_svc_sit modem_stat_data_file:dir create_dir_perms; allow modem_svc_sit modem_stat_data_file:file create_file_perms; allow modem_svc_sit mnt_vendor_file:dir search;