From 827b204adb3e3bd056609263ac1254157bf55b95 Mon Sep 17 00:00:00 2001 From: Ocean Chen Date: Mon, 16 Aug 2021 07:49:50 +0000 Subject: [PATCH] storage: update sepolicy for hardwareinfoservice Bug: 188793183 Test: run pixel/022 Change-Id: I921c4eae0744278896007183a7947f281925b24f --- tracking_denials/hardware_info_app.te | 4 ---- whitechapel/vendor/google/hardware_info_app.te | 4 ++++ 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/tracking_denials/hardware_info_app.te b/tracking_denials/hardware_info_app.te index 810cb701..8e02952f 100644 --- a/tracking_denials/hardware_info_app.te +++ b/tracking_denials/hardware_info_app.te @@ -1,12 +1,8 @@ # b/181177926 -dontaudit hardware_info_app sysfs_scsi_devices_0000:file { getattr }; -dontaudit hardware_info_app sysfs_scsi_devices_0000:file { open }; dontaudit hardware_info_app sysfs_batteryinfo:file { read }; dontaudit hardware_info_app sysfs:file { read }; dontaudit hardware_info_app sysfs:file { open }; dontaudit hardware_info_app sysfs:file { getattr }; -dontaudit hardware_info_app sysfs_scsi_devices_0000:dir { search }; -dontaudit hardware_info_app sysfs_scsi_devices_0000:file { read }; dontaudit hardware_info_app sysfs_batteryinfo:dir { search }; # b/181914888 dontaudit hardware_info_app sysfs_batteryinfo:file { open }; diff --git a/whitechapel/vendor/google/hardware_info_app.te b/whitechapel/vendor/google/hardware_info_app.te index c5bfb879..382b531c 100644 --- a/whitechapel/vendor/google/hardware_info_app.te +++ b/whitechapel/vendor/google/hardware_info_app.te @@ -7,3 +7,7 @@ allow hardware_info_app app_api_service:service_manager find; # Display allow hardware_info_app sysfs_display:dir search; allow hardware_info_app sysfs_display:file r_file_perms; + +# Storage +allow hardware_info_app sysfs_scsi_devices_0000:dir search; +allow hardware_info_app sysfs_scsi_devices_0000:file r_file_perms; \ No newline at end of file