Evolution-x-devices/device_google_walleye
2
0
Fork 0
mirror of https://github.com/Evolution-X-Devices/device_google_walleye synced 2026-02-01 07:33:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

Added surfaceflinger.te and domain.te to expand policy coverage.

Browse Source 
Added access to diag_device for userdebug/eng builds in
domain.te under the expectation that a good number of other types might
need it as access. Also added access to search persist_file directories
in surfaceflinger.te to address selinux denials.

Bug: 34784662
Test: surfaceflinger search denials absent from boot logs
Change-Id: I5546f6204bbe4ce2cbd26b9a9269aa9bb33d9508
This commit is contained in:
Max Bires
2017-02-03 15:06:04 -08:00
parent 2adb66c3b9
commit 6f4943b5be
2 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
sepolicy/domain.te Normal file
View File

@@ -0,0 +1,3 @@
userdebug_or_eng(`
allow domain diag_device:chr_file rw_file_perms;
')

2
sepolicy/surfaceflinger.te Normal file
View File

@@ -0,0 +1,2 @@
# persist
allow surfaceflinger persist_file:dir search;