Evolution-x-devices/device_google_wahoo
2
0
Fork 0
mirror of https://github.com/Evolution-X-Devices/device_google_wahoo synced 2026-01-29 23:19:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add OMADM logs to the bugreport

Browse Source 
Allow OMADM to access data/vendor/radio

Fix below avc denied errors

08-23 14:45:16.080   624   624 E SELinux : avc:  denied  { find } for service=isub pid=4274 uid=10156 scontext=u:r:omadm_app:s0:c156,c256,c512,c768 tcontext=u:object_r:radio_service:s0 tclass=service_manager permissive=0

08-23 14:58:13.443  6623  6623 I auditd  : type=1400 audit(0.0:26): avc: denied { create } for comm="ConnectivityThr" scontext=u:r:omadm_app:s0:c131,c256,c512,c768 tcontext=u:r:omadm_app:s0:c131,c256,c512,c768 tclass=udp_socket permissive=0 app=com.android.omadm.service

08-23 14:58:34.770  6623  6623 I auditd  : type=1400 audit(0.0:28): avc: denied { write } for comm="IntentService[D" name="dnsproxyd" dev="tmpfs" ino=25468 scontext=u:r:omadm_app:s0:c131,c256,c512,c768 tcontext=u:object_r:dnsproxyd_socket:s0 tclass=sock_file permissive=0 app=com.android.omadm.service

08-23 16:15:43.770  6742  6742 I auditd  : type=1400 audit(0.0:27): avc: denied { write } for comm="ConnectivityThr" name="fwmarkd" dev="tmpfs" ino=26777 scontext=u:r:omadm_app:s0:c123,c256,c512,c768 tcontext=u:object_r:fwmarkd_socket:s0 tclass=sock_file permissive=0 app=com.android.omadm.service

08-23 16:16:06.506  6742  6742 I auditd  : type=1400 audit(0.0:35): avc: denied { connectto } for comm="IntentService[D" path="/dev/socket/dnsproxyd" scontext=u:r:omadm_app:s0:c123,c256,c512,c768 tcontext=u:r:netd:s0 tclass=unix_stream_socket permissive=0 app=com.android.omadm.service

Bug: 119871368
Test: Verify OMADM log can be added to the bugreport and avc denied
issues were fixed

Change-Id: Ie043bd4b90da865a39624956324abd7b7c11cb5a
This commit is contained in:
Josh Hou
2019-09-10 19:45:59 +08:00
parent 75a9dfcec0
commit d8e64d139e
3 changed files with 14 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
dumpstate/DumpstateDevice.cpp
View File

@@ -123,6 +123,7 @@ void DumpstateDevice::dumpModem(int fd, int fdModem)
"/data/vendor/radio/ril_log_old",
"/data/vendor/netmgr/netmgr_log",
"/data/vendor/netmgr/netmgr_log_old",
"/data/vendor/radio/omadm_logs.txt",
"/data/vendor/radio/power_anomaly_data.txt",
"/data/vendor/radio/diag_logs/diag_trace.txt",
"/data/vendor/radio/diag_logs/diag_trace_old.txt",

10
sepolicy/vendor/omadm.te vendored Normal file
View File

@@ -0,0 +1,10 @@
# OMADM app
type omadm_app, domain;
app_domain(omadm_app)
net_domain(omadm_app)
allow omadm_app app_api_service:service_manager find;
allow omadm_app radio_vendor_data_file:dir rw_dir_perms;
allow omadm_app radio_vendor_data_file:file create_file_perms;
allow omadm_app radio_service:service_manager find;

3
sepolicy/vendor/seapp_contexts vendored
View File

@@ -30,3 +30,6 @@ user=_app seinfo=easel name=com.google.android.imaging.easel.service domain=ease
#Domain for connectivity monitor
user=_app isPrivApp=true seinfo=platform name=com.google.android.connectivitymonitor domain=con_monitor_app type=app_data_file levelFrom=all
#Domain for omadm
user=_app isPrivApp=true seinfo=platform name=com.android.omadm.service domain=omadm_app type=app_data_file levelFrom=all