From b2d162fda78e4a9e4635663e0ff4241792ed7d02 Mon Sep 17 00:00:00 2001 From: George Chang Date: Thu, 2 Dec 2021 11:03:07 +0800 Subject: [PATCH] Fix SELinux error coming from hal_secure_element_uicc 12-02 09:45:55.564 796 796 I secure_element@: type=1400 audit(0.0:3): avc: denied { call } for scontext=u:r:hal_secure_element_uicc:s0 tcontext=u:r:rild:s0 tclass=binder permissive=1 [ 11.030503] type=1400 audit(1638409555.564:3): avc: denied { call } for comm="secure_element@" scontext=u:r:hal_secure_element_uicc:s0 tcontext=u:r:rild:s0 tclass=binder permissive=1 Bug: 208715886 Test: check avc Change-Id: I701b36fbb58f1c071f1dbc394048dad467ac6c4c --- tracking_denials/hal_secure_element_uicc.te | 2 -- whitechapel_pro/hal_secure_element_uicc.te | 4 ++-- 2 files changed, 2 insertions(+), 4 deletions(-) delete mode 100644 tracking_denials/hal_secure_element_uicc.te diff --git a/tracking_denials/hal_secure_element_uicc.te b/tracking_denials/hal_secure_element_uicc.te deleted file mode 100644 index c467a467..00000000 --- a/tracking_denials/hal_secure_element_uicc.te +++ /dev/null @@ -1,2 +0,0 @@ -# b/208715886 -dontaudit hal_secure_element_uicc rild:binder { call }; diff --git a/whitechapel_pro/hal_secure_element_uicc.te b/whitechapel_pro/hal_secure_element_uicc.te index c91ae3bb..fe535320 100644 --- a/whitechapel_pro/hal_secure_element_uicc.te +++ b/whitechapel_pro/hal_secure_element_uicc.te @@ -4,8 +4,8 @@ type hal_secure_element_uicc_exec, exec_type, vendor_file_type, file_type; hal_server_domain(hal_secure_element_uicc, hal_secure_element) init_daemon_domain(hal_secure_element_uicc) -# Allow hal_secure_element_default to access rild -binder_call(hal_secure_element_default, rild); +# Allow hal_secure_element_uicc to access rild +binder_call(hal_secure_element_uicc, rild); allow hal_secure_element_uicc hal_exynos_rild_hwservice:hwservice_manager find;