From 489a6e7843f627a06f52284b949d820e1138da73 Mon Sep 17 00:00:00 2001 From: Aaron Tsai Date: Wed, 22 May 2024 11:11:18 +0000 Subject: [PATCH] Add permission for setting gril property 05-22 18:20:50.608 914 914 I auditd : type=1400 audit(0.0:97): avc: denied { write } for comm="radioext@1.0-se" name="property_service" dev="tmpfs" ino=849 scontext=u:r:hal_radioext_default:s0 tcontext=u:object_r:property_socket:s0 tclass=sock_file permissive=0 Bug: 343012301 Bug: 203824024 Test: manual test Flag: EXEMPT bugfix Change-Id: Ic08a1e1c6a0db29e329f121c813bebadbee5a5e9 --- radio/hal_radioext_default.te | 1 + radio/property.te | 1 + radio/property_contexts | 3 +++ 3 files changed, 5 insertions(+) diff --git a/radio/hal_radioext_default.te b/radio/hal_radioext_default.te index 7bc0e966..25cb7e5c 100644 --- a/radio/hal_radioext_default.te +++ b/radio/hal_radioext_default.te @@ -4,6 +4,7 @@ init_daemon_domain(hal_radioext_default) hwbinder_use(hal_radioext_default) get_prop(hal_radioext_default, hwservicemanager_prop) +set_prop(hal_radioext_default, vendor_gril_prop) add_hwservice(hal_radioext_default, hal_radioext_hwservice) binder_call(hal_radioext_default, servicemanager) diff --git a/radio/property.te b/radio/property.te index 16ccefce..4a2cc469 100644 --- a/radio/property.te +++ b/radio/property.te @@ -6,6 +6,7 @@ vendor_internal_prop(vendor_persist_config_default_prop) vendor_internal_prop(vendor_diag_prop) vendor_internal_prop(vendor_modem_prop) vendor_internal_prop(vendor_rild_prop) +vendor_internal_prop(vendor_gril_prop) vendor_internal_prop(vendor_ssrdump_prop) vendor_internal_prop(vendor_wifi_version) vendor_internal_prop(vendor_imssvc_prop) diff --git a/radio/property_contexts b/radio/property_contexts index 0cad5bcf..3f2c9176 100644 --- a/radio/property_contexts +++ b/radio/property_contexts @@ -38,6 +38,9 @@ vendor.sys.rild_reset u:object_r:vendor_rild_prop:s0 persist.vendor.radio. u:object_r:vendor_rild_prop:s0 ro.vendor.config.build_carrier u:object_r:vendor_carrier_prop:s0 +# for GRIL +vendor.gril. u:object_r:vendor_gril_prop:s0 + # SSR Detector vendor.debug.ssrdump. u:object_r:vendor_ssrdump_prop:s0 persist.vendor.sys.ssr. u:object_r:vendor_ssrdump_prop:s0