From 8bae2535016e9fbe47eede60b8b6bf76911f8d7b Mon Sep 17 00:00:00 2001 From: Shiyong Li Date: Thu, 9 Dec 2021 00:06:28 +0000 Subject: [PATCH] allow android.hardware.power.stats-service.pixel to access display sysfs Fix the follwoing violations: avc: denied { read } for name="state" dev="sysfs" ino=68654 scontext=u:r:hal_power_stats_default:s0 tcontext=u:object_r:sysfs_sensors:s0 tclass=file ... avc: denied { open } for path= "/sys/devices/platform/1c2c0000.drmdsim/1c2c0000.drmdsim.0/backlight/panel0-backlight/state" dev="sysfs" ino=68654 scontext=u:r:hal_power_stats_default:s0 tcontext=u:object_r:sysfs_sensors:s0 tclass=file Bug: 209704948 Change-Id: Iad586164811457d09f6c0e81c67c0f217b77ccc2 Signed-off-by: Shiyong Li --- tracking_denials/hal_power_stats_default.te | 3 --- whitechapel_pro/hal_power_stats_default.te | 3 +++ 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/tracking_denials/hal_power_stats_default.te b/tracking_denials/hal_power_stats_default.te index bd54b733..ff6abb06 100644 --- a/tracking_denials/hal_power_stats_default.te +++ b/tracking_denials/hal_power_stats_default.te @@ -25,6 +25,3 @@ dontaudit hal_power_stats_default sysfs_wifi:dir { search }; dontaudit hal_power_stats_default sysfs_wifi:file { getattr }; dontaudit hal_power_stats_default sysfs_wifi:file { open }; dontaudit hal_power_stats_default sysfs_wifi:file { read }; -# b/209704948 -dontaudit hal_power_stats_default sysfs_sensors:file { open }; -dontaudit hal_power_stats_default sysfs_sensors:file { read }; diff --git a/whitechapel_pro/hal_power_stats_default.te b/whitechapel_pro/hal_power_stats_default.te index f49572cc..389437aa 100644 --- a/whitechapel_pro/hal_power_stats_default.te +++ b/whitechapel_pro/hal_power_stats_default.te @@ -1,2 +1,5 @@ allow hal_power_stats_default sysfs_scsi_devices_0000:dir r_dir_perms; allow hal_power_stats_default sysfs_scsi_devices_0000:file r_file_perms; + +# allowed to access dislay stats sysfs node +allow hal_power_stats_default sysfs_sensors:file r_file_perms;