2021-04-17 13:30:26 -04:00
|
|
|
allow init adsprpcd_file:file mounton;
|
2021-07-16 04:41:24 -04:00
|
|
|
allow init apex_metadata_file:lnk_file read;
|
2020-11-01 02:05:08 -05:00
|
|
|
allow init socket_device:sock_file { unlink setattr create };
|
2021-04-17 13:30:26 -04:00
|
|
|
allow init sysfs_graphics:file { read open };
|
sdm660-common: sepolicy: Address many denials
sdm660-common: sepolicy: Address vendor_init persist_file read denial
avc: denied { read } for comm="init" name="persist" dev="mmcblk0p63" ino=47 scontext=u:r:vendor_init:s0 tcontext=u:object_r:persist_file:s0 tclass=lnk_file permissive=0
sdm660-common: sepolicy: Address tee persist_file read denial
avc: denied { read } for comm="qseecomd" name="persist" dev="mmcblk0p63" ino=47 scontext=u:r:tee:s0 tcontext=u:object_r:persist_file:s0 tclass=lnk_file permissive=0
sdm660-common: sepolicy: Address installd mnt_user_file denial
avc: denied { search } for comm="Binder:1018_6" name="0" dev="tmpfs" ino=5541 scontext=u:r:installd:s0 tcontext=u:object_r:mnt_user_file:s0 tclass=dir permissive=0
sdm660-common: sepolicy: Address ssgtzd qipcrtr_socket denial
sdm660-common: sepolicy: Address platform_app denials
avc: denied { read } for comm="emui:screenshot" name="u:object_r:exported_audio_prop:s0" dev="tmpfs" ino=4254 scontext=u:r:platform_app:s0:c512,c768 tcontext=u:object_r:exported_audio_prop:s0 tclass=file permissive=0 app=com.android.systemui
sdm660-common: sepolicy: Address init sysfs_graphics denial
avc: denied { read } for comm="init" name="device" dev="sysfs" ino=44569 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_graphics:s0 tclass=lnk_file permissive=0
sdm660-common: sepolicy: Address system_app sysfs_graphics denials
avc: denied { write } for comm="settings.device" name="max_brightness" dev="sysfs" ino=44572 scontext=u:r:system_app:s0 tcontext=u:object_r:sysfs_graphics:s0 tclass=file permissive=0
avc: denied { open } for comm="settings.device" path="/sys/devices/platform/soc/800f000.qcom,spmi/spmi-0/spmi0-03/800f000.qcom,spmi:qcom,pm660l@3:qcom,leds@d000/leds/red/max_brightness" dev="sysfs" ino=44572 scontext=u:r:system_app:s0 tcontext=u:object_r:sysfs_graphics:s0 tclass=file permissive=0
sdm660-common: sepolicy: Address system_server sysfs_rtc denial
avc: denied { read } for comm="system_server" name="hctosys" dev="sysfs" ino=41512 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
sdm660-common: sepolicy: Address gmscore_app getattr denials
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/linkerconfig" dev="tmpfs" ino=3474 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:linkerconfig_file:s0 tclass=dir permissive=0 app=com.google.android.gms
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/persist" dev="mmcblk0p63" ino=47 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:persist_file:s0 tclass=lnk_file permissive=0 app=com.google.android.gms
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/init" dev="mmcblk0p63" ino=28 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:init_exec:s0 tclass=lnk_file permissive=0 app=com.google.android.gms
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/metadata" dev="mmcblk0p63" ino=32 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:metadata_file:s0 tclass=dir permissive=0 app=com.google.android.gms
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/postinstall" dev="mmcblk0p63" ino=48 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:postinstall_mnt_dir:s0 tclass=dir permissive=0 app=com.google.android.gms
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/vendor/firmware_mnt" dev="mmcblk0p58" ino=1 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:firmware_file:s0 tclass=dir permissive=0 app=com.google.android.gms
avc: denied { getattr } for comm="CTION_IDLE_MODE" path="/vendor/firmware" dev="mmcblk0p64" ino=1216 scontext=u:r:gmscore_app:s0:c512,c768 tcontext=u:object_r:vendor_firmware_file:s0 tclass=dir permissive=0 app=com.google.android.gms
sdm660-common: sepolicy: Address vendor_mutualex create denial
avc: denied { create } for comm="mutualex" scontext=u:r:vendor_mutualex:s0 tcontext=u:r:vendor_mutualex:s0 tclass=qipcrtr_socket permissive=0
Signed-off-by: pix106 <sbordenave@gmail.com>
2021-07-30 03:06:00 -04:00
|
|
|
allow init sysfs_graphics:lnk_file read;
|
2021-04-17 13:30:26 -04:00
|
|
|
allow init sysfs_battery_supply:file setattr;
|
2020-08-06 04:08:04 -04:00
|
|
|
allow init vendor_default_prop:property_service set;
|
2019-08-13 12:38:26 -04:00
|
|
|
allow init sysfs_info:file { open read };
|
2021-06-27 12:45:59 -04:00
|
|
|
|
|
|
|
|
allow init {
|
|
|
|
|
bt_firmware_file
|
|
|
|
|
firmware_file
|
|
|
|
|
}:filesystem getattr;
|
2021-05-14 14:30:51 -04:00
|
|
|
allow init firmware_file:filesystem { getattr };
|
|
|
|
|
allow init bt_firmware_file:filesystem { getattr };
|
2021-05-15 03:14:36 -04:00
|
|
|
allow init apex_metadata_file:lnk_file { read };
|
2021-11-30 08:14:50 -05:00
|
|
|
|
|
|
|
|
# Vibrator
|
|
|
|
|
allow init sysfs_leds: file { rw_file_perms };
|
|
|
|
|
|
|
|
|
|
allow init sysfs:file { setattr };
|
|
|
|
|
allow init debugfs_tracing_debug:dir { mounton };
|
2021-09-04 09:00:07 -04:00
|
|
|
|
|
|
|
|
allow init system_file:file mounton;
|
2021-09-21 02:22:55 -04:00
|
|
|
allow init {
|
|
|
|
|
vendor_configs_file
|
|
|
|
|
vendor_framework_file
|
|
|
|
|
vendor_app_file
|
|
|
|
|
}:file mounton;
|
2023-02-23 04:58:24 -05:00
|
|
|
|
|
|
|
|
allow init hal_fingerprint_sdm660:process ptrace;
|
