diff options
| author | Cosme Domínguez Díaz <cosme.ddiaz@gmail.com> | 2018-04-16 23:09:12 +0200 |
|---|---|---|
| committer | Cosme Domínguez Díaz <cosme.ddiaz@gmail.com> | 2018-04-22 11:54:17 +0200 |
| commit | 8921aabf361318fe157b4f477a11fbb430fede2a (patch) | |
| tree | 8cffffe9554f1e9a38b65171f66dd1942b1d2b17 | |
| parent | 23cfa75a1757319e9ee8c756249032202212a3aa (diff) | |
msm8996-common: Fix more SELinux denials.
avc: denied { getattr } for pid=1726 comm="m.android.phone" path="/data/user_de/0/com.android.settings" dev="sda10" ino=1957977 scontext=u:r:radio:s0 tcontext=u:object_r:system_app_data_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=1726 comm="m.android.phone" path="/data/user_de/0/com.android.settings" dev="sda10" ino=1957977 scontext=u:r:radio:s0 tcontext=u:object_r:system_app_data_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/recovery" dev="sda10" ino=2228226 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_recovery_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/recovery" dev="sda10" ino=2228226 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_recovery_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/backup" dev="sda10" ino=2228228 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_private_backup_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/backup" dev="sda10" ino=2228228 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_private_backup_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/recovery" dev="sda10" ino=2228226 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_recovery_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/recovery" dev="sda10" ino=2228226 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_recovery_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/backup" dev="sda10" ino=2228228 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_private_backup_file:s0 tclass=dir permissive=0
avc: denied { getattr } for pid=2363 comm="sAsyncHandlerTh" path="/data/cache/backup" dev="sda10" ino=2228228 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:cache_private_backup_file:s0 tclass=dir permissive=0
| -rw-r--r-- | sepolicy/mediaprovider.te | 2 | ||||
| -rw-r--r-- | sepolicy/radio.te | 1 |
2 files changed, 3 insertions, 0 deletions
diff --git a/sepolicy/mediaprovider.te b/sepolicy/mediaprovider.te new file mode 100644 index 0000000..6ab8637 --- /dev/null +++ b/sepolicy/mediaprovider.te @@ -0,0 +1,2 @@ +allow mediaprovider cache_private_backup_file:dir getattr; +allow mediaprovider cache_recovery_file:dir getattr; diff --git a/sepolicy/radio.te b/sepolicy/radio.te index 0a3590a..442a4b9 100644 --- a/sepolicy/radio.te +++ b/sepolicy/radio.te @@ -1 +1,2 @@ allow radio vendor_file:file { execute getattr open read }; +allow radio system_app_data_file:dir getattr; |