mirror of
https://github.com/Evolution-X-Devices/device_google_wahoo
synced 2026-02-01 07:50:47 +00:00
Clean up denials
avc: denied { search } for name="/" scontext=u:r:kernel:s0
tcontext=u:object_r:persist_file:s0 tclass=dir
avc: denied { search } for name="ipc_logging" dev="debugfs"
scontext=u:r:kernel:s0 tcontext=u:object_r:debugfs_ipc:s0
tclass=dir
avc: denied { sys_module } scontext=u:r:netd:s0
tcontext=u:r:netd:s0 tclass=capability
Bug: 35197529
Test: build, verify denials no longer occur.
Change-Id: Ibe18ca05f2d80343624d08116b83b5287239c01a
This commit is contained in:
Jeff Vander Stoep
3
sepolicy/vendor/kernel.te
vendored
3
sepolicy/vendor/kernel.te
vendored
@@ -9,3 +9,6 @@ allow kernel vendor_firmware_file:file r_file_perms;
|
||||
allow kernel vendor_firmware_file:lnk_file read;
|
||||
|
||||
dontaudit kernel kernel:system module_request;
|
||||
|
||||
allow kernel debugfs_ipc:dir search;
|
||||
allow kernel persist_file:dir search;
|
||||
|
||||
2
sepolicy/vendor/netd.te
vendored
2
sepolicy/vendor/netd.te
vendored
@@ -1,4 +1,4 @@
|
||||
allow netd sysfs_net:file w_file_perms;
|
||||
|
||||
dontaudit netd kernel:system module_request;
|
||||
dontaudit netd self:system module_request;
|
||||
dontaudit netd self:capability sys_module;
|
||||
|
||||
Reference in New Issue
Block a user