Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

allow init to mount modem_img

Browse source 
Bug: 182524202
Bug: 182524203
Test: modem_img is mounted under enforcing mode
Change-Id: Ie5448468d4d7f1ad6acdd2c93055bba9001185d1
This commit is contained in:
Adam Shih 2021-03-12 12:53:38 +08:00
parent 526da2f9b1
commit fdeedcba65
4 changed files with 2 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

4
tracking_denials/init.te
View file

@ -7,15 +7,11 @@ dontaudit init sysfs:file { setattr };
dontaudit init sysfs:file { write };
# b/178979985
dontaudit init device:chr_file { ioctl };
dontaudit init modem_img_file:dir { mounton };
dontaudit init device:chr_file { open };
dontaudit init device:chr_file { read write };
dontaudit init modem_img_file:dir { mounton };
dontaudit init device:chr_file { ioctl };
dontaudit init device:chr_file { open };
dontaudit init device:chr_file { read write };
# b/180963348
dontaudit init overlayfs_file:chr_file { unlink };
dontaudit init overlayfs_file:file { rename };
# b/182524202
dontaudit init mnt_vendor_file:dir { mounton };

4
tracking_denials/installd.te
View file

@ -1,4 +0,0 @@
# b/182524203
dontaudit installd modem_img_file:filesystem { quotaget };
dontaudit installd modem_img_file:filesystem { quotaget };
dontaudit installd modem_img_file:filesystem { quotaget };

1
whitechapel/vendor/google/init.te vendored
View file

@ -8,6 +8,7 @@ allow init custom_ab_block_device:lnk_file relabelto;
allow init boot_block_device:lnk_file relabelto;
allow init modem_img_file:dir mounton;
allow init mnt_vendor_file:dir mounton;
allow init modem_img_file:filesystem { getattr mount relabelfrom };
allow init persist_file:dir mounton;

1
whitechapel/vendor/google/installd.te vendored Normal file
View file

@ -0,0 +1 @@
dontaudit installd modem_img_file:filesystem quotaget;