Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

modem_svc_sit: Fix avc errors

Browse source 
avc: denied { search } for comm="modem_svc_sit" name="vendor" dev="tmpfs" ino=2 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:mnt_vendor_file:s0 tclass=dir
avc: denied { write open } for path="/mnt/vendor/modem_userdata/replay/dds.bin" dev="sda7" ino=14 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:modem_userdata_file:s0 tclass=file
avc: denied { remove_name } for name="dds.bin" dev="sda7" ino=14 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:modem_userdata_file:s0 tclass=dir

Bug: 183467321
Change-Id: Ic5b8fcf324bb0a8b0f6312b3ae755d73a53f0e9c
This commit is contained in:
SalmaxChang 2021-03-23 15:11:38 +08:00
parent 01376cbe06
commit b4fbecb9fb
2 changed files with 4 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

19
tracking_denials/modem_svc_sit.te
View file

@ -1,19 +0,0 @@
# b/183467321
dontaudit modem_svc_sit mnt_vendor_file:dir { search };
dontaudit modem_svc_sit modem_userdata_file:file { write open };
dontaudit modem_svc_sit modem_userdata_file:file { create };
dontaudit modem_svc_sit modem_userdata_file:dir { add_name };
dontaudit modem_svc_sit modem_userdata_file:dir { getattr };
dontaudit modem_svc_sit modem_userdata_file:dir { search };
dontaudit modem_svc_sit modem_userdata_file:dir { write };
dontaudit modem_svc_sit modem_userdata_file:dir { remove_name };
dontaudit modem_svc_sit modem_userdata_file:file { unlink };
dontaudit modem_svc_sit modem_userdata_file:dir { getattr };
dontaudit modem_svc_sit modem_userdata_file:dir { add_name };
dontaudit modem_svc_sit modem_userdata_file:file { create };
dontaudit modem_svc_sit modem_userdata_file:file { write open };
dontaudit modem_svc_sit modem_userdata_file:file { unlink };
dontaudit modem_svc_sit modem_userdata_file:dir { remove_name };
dontaudit modem_svc_sit modem_userdata_file:dir { write };
dontaudit modem_svc_sit modem_userdata_file:dir { search };
dontaudit modem_svc_sit mnt_vendor_file:dir { search };

4
whitechapel/vendor/google/modem_svc_sit.te vendored
View file

@ -16,6 +16,10 @@ allow modem_svc_sit radio_vendor_data_file:dir create_dir_perms;
allow modem_svc_sit radio_vendor_data_file:file create_file_perms; allow modem_svc_sit radio_vendor_data_file:file create_file_perms;
allow modem_svc_sit modem_stat_data_file:file create_file_perms; allow modem_svc_sit modem_stat_data_file:file create_file_perms;
allow modem_svc_sit mnt_vendor_file:dir search;
allow modem_svc_sit modem_userdata_file:dir create_dir_perms;
allow modem_svc_sit modem_userdata_file:file create_file_perms;
# RIL property # RIL property
get_prop(modem_svc_sit, vendor_rild_prop) get_prop(modem_svc_sit, vendor_rild_prop)