From e02f501377a60d5458b83bbd81bd936ccd0872bf Mon Sep 17 00:00:00 2001 From: Chungjui Fan Date: Thu, 10 Mar 2022 22:50:51 +0800 Subject: [PATCH] sepolicy: allow fastbootd to access gsc device node audit: type=1400 audit(1646614793.912:8): avc: denied { getattr } for pid=347 comm="fastbootd" path="/dev/gsc0" dev="tmpfs" ino=469 scontext=u:r:fastbootd:s0 tcontext=u:object_r:citadel_device:s0 tclass=chr_file permissive=0 Bug: 221410358 Test: fastboot -w in fastbootd mode Change-Id: I5680515865c2656ffa91dfe593459aab1ade81cb Signed-off-by: Chungjui Fan --- whitechapel_pro/fastbootd.te | 1 + 1 file changed, 1 insertion(+) diff --git a/whitechapel_pro/fastbootd.te b/whitechapel_pro/fastbootd.te index c1c4de7b..0d215a84 100644 --- a/whitechapel_pro/fastbootd.te +++ b/whitechapel_pro/fastbootd.te @@ -3,4 +3,5 @@ recovery_only(` allow fastbootd devinfo_block_device:blk_file rw_file_perms; allow fastbootd sda_block_device:blk_file rw_file_perms; allow fastbootd sysfs_ota:file rw_file_perms; +allow fastbootd citadel_device:chr_file rw_file_perms; ')