Evolution-X-Tensor/device_google_tegu
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update sepolicy for radioext AIDL service.

Browse source 
avc logs for each rule:

SELinux : avc:  denied  { find } for pid=1965 uid=10238 name=vendor.google.radio_ext.IRadioExt/default scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:object_r:default_android_service:s0 tclass=service_manager permissive=0

auditd  : type=1400 audit(0.0:12): avc:  denied  { call } for  comm="oid.grilservice" scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:r:hal_radio_ext:s0 tclass=binder permissive=0 app=com.google.android.grilservice

Bug: 343576955
Test: Manual. grilservice_app invoke method in radio ext
successfully.
Change-Id: I7cff95231430d78a7e2436b2ba10acf45cd5dbd8

Change-Id: Ide8934503593804fcc141cd87e3eeffc0f5f55e2
This commit is contained in:
Frank Yu 2024-05-31 07:08:45 +00:00
parent 74ef7dcad5
commit 281f3af6a6
1 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
vendor/grilservice_app.te vendored Normal file
View file

@ -0,0 +1,2 @@
allow grilservice_app hal_radio_ext_service:service_manager find;
binder_call(grilservice_app, hal_radio_ext)