Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Allow mediacodec_samsung can route /dev/binder traffic to /dev/vndbinder

Browse source 
This patch fixes the following denial:

avc: denied { call } for scontext=u:r:mediacodec_samsung:s0 \
tcontext=u:r:vndservicemanager:s0 tclass=binder permissive=1

avc: denied { transfer } for scontext=u:r:mediacodec_samsung:s0 \
tcontext=u:r:vndservicemanager:s0 tclass=binder permissive=1

Bug: 205904381
Test: boot to home
Change-Id: Ie2c0577bdf987466b4f729d9f78d1a6704cd9d24
This commit is contained in:
wenchangliu 2021-11-23 22:53:19 +08:00 committed by Wen Chang Liu
parent 5e6beee1e6
commit 0df2e47cb1
2 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

3
tracking_denials/mediacodec_samsung.te
View file

@ -8,6 +8,3 @@ dontaudit mediacodec_samsung vndbinder_device:chr_file { map };
dontaudit mediacodec_samsung vndbinder_device:chr_file { open }; dontaudit mediacodec_samsung vndbinder_device:chr_file { open };
dontaudit mediacodec_samsung vndbinder_device:chr_file { read }; dontaudit mediacodec_samsung vndbinder_device:chr_file { read };
dontaudit mediacodec_samsung vndbinder_device:chr_file { write }; dontaudit mediacodec_samsung vndbinder_device:chr_file { write };
# b/205904381
dontaudit mediacodec_samsung vndservicemanager:binder { call };
dontaudit mediacodec_samsung vndservicemanager:binder { transfer };

3
whitechapel_pro/mediacodec_samsung.te
View file

@ -4,3 +4,6 @@ init_daemon_domain(mediacodec_samsung)
hal_server_domain(mediacodec_samsung, hal_codec2) hal_server_domain(mediacodec_samsung, hal_codec2)
add_service(mediacodec_samsung, eco_service) add_service(mediacodec_samsung, eco_service)
# can route /dev/binder traffic to /dev/vndbinder
vndbinder_use(mediacodec_samsung)