Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Remove unnecessary dontaudit for context euiccpixel_app

Browse source 
bug: 260522203
bug: 260922442
bug: 262455954
bug: 260522040
bug: 260768358
bug: 261933311

Test:
1. m atest && atest-dev com.google.android.selinux.pts.SELinuxTest#scanAvcDeniedLogRightAfterReboot
2. eSIM OS version check & OS upgrade successfully without avc error

Change-Id: I6e0771a5794a42af5e187e35881e6de06e01fff0
This commit is contained in:
Welly Hsu 2023-02-06 14:58:52 +08:00
parent 378fc6f5cf
commit 0b3bc92066
4 changed files with 3 additions and 18 deletions
Download patch file Download diff file Expand all files Collapse all files

11
tracking_denials/euiccpixel_app.te
View file

@ -1,9 +1,4 @@
# b/261933311
dontaudit euiccpixel_app dumpstate:fd { use };
dontaudit euiccpixel_app dumpstate:fifo_file { append };
dontaudit euiccpixel_app dumpstate:fifo_file { write };
dontaudit euiccpixel_app system_server:fifo_file { write };
dontaudit euiccpixel_app tombstoned:unix_stream_socket { connectto };
dontaudit euiccpixel_app tombstoned_java_trace_socket:sock_file { write };
# b/265286368
dontaudit euiccpixel_app default_android_service:service_manager { find };
dontaudit euiccpixel_app default_android_service:service_manager { find };
# b/269218505
dontaudit euiccpixel_app default_prop:file { read };

4
tracking_denials/priv_app.te
View file

@ -9,12 +9,8 @@ dontaudit priv_app privapp_data_file:file { open };
dontaudit priv_app privapp_data_file:file { setattr };
# b/260768358
dontaudit priv_app default_android_service:service_manager { find };
dontaudit priv_app euiccpixel_app:binder { transfer };
# b/260922442
dontaudit priv_app default_android_service:service_manager { find };
dontaudit priv_app euiccpixel_app:binder { transfer };
# b/262455954
dontaudit priv_app euiccpixel_app:binder { call };
# b/263185432
dontaudit priv_app privapp_data_file:file { unlink };
# b/264490074

4
tracking_denials/system_server.te
View file

@ -1,7 +1,3 @@
# b/260522040
dontaudit system_server euiccpixel_app:binder { call };
dontaudit system_server euiccpixel_app:binder { transfer };
dontaudit system_server euiccpixel_app:process { setsched };
# b/261519050
dontaudit system_server con_monitor_app:binder { call };
dontaudit system_server con_monitor_app:binder { transfer };

2
tracking_denials/zygote.te
View file

@ -1,5 +1,3 @@
# b/260522203
dontaudit zygote euiccpixel_app:process { dyntransition };
# b/261782930
dontaudit zygote con_monitor_app:process { dyntransition };
# b/264490077