Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fix overlayfs avc denied

Browse source 
avc: denied { rename } for comm="init" name="#b" dev="dm-6" ino=52
scontext=u:r:init:s0 tcontext=u:object_r:overlayfs_file:s0
tclass=file permissive=1

avc: denied { unlink } for comm="init" name="#b" dev="dm-6" ino=53
scontext=u:r:init:s0 tcontext=u:object_r:overlayfs_file:s0
tclass=chr_file permissive=1

Bug: 192617244
Test: boot & adb remount
Signed-off-by: Randall Huang <huangrandall@google.com>
Change-Id: I740ff317520439034d2bf6e0659b1418bf6dac5c
This commit is contained in:
Randall Huang 2021-07-06 18:19:04 +08:00
parent 46dfc784f5
commit d328008234
2 changed files with 5 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

2
tracking_denials/init.te
View file

@ -1,2 +0,0 @@
# b/192617244
dontaudit init overlayfs_file:file rename;

5
whitechapel/vendor/google/init.te vendored
View file

@ -18,3 +18,8 @@ allow init ram_device:blk_file w_file_perms;
allow init per_boot_file:file ioctl;
allowxperm init per_boot_file:file ioctl { F2FS_IOC_SET_PIN_FILE };
allow init sysfs_scsi_devices_0000:file w_file_perms;
userdebug_or_eng(`
allow init overlayfs_file:file { rename };
allow init overlayfs_file:chr_file { unlink };
')