diff options
| author | android-build-team Robot <android-build-team-robot@google.com> | 2019-07-09 03:08:53 +0000 |
|---|---|---|
| committer | android-build-team Robot <android-build-team-robot@google.com> | 2019-07-09 03:08:53 +0000 |
| commit | 3d6c10ce6271ed29719b2872543a30af7b9cdc41 (patch) | |
| tree | b4eef7993ada7c644e83bb4b73d7f8e30a0710a7 | |
| parent | e2da163c833c34c3b5085e19adae34abfa8ad456 (diff) | |
| parent | 4eb652f8cd6cc98c843380eb71e4f6edac3b982d (diff) | |
| download | bonito-sepolicy-android10-c2f2-s1-release.tar.gz | |
Snap for 5713143 from 4eb652f8cd6cc98c843380eb71e4f6edac3b982d to qt-c2f2-releaseandroid-10.0.0_r9android-10.0.0_r8android-10.0.0_r7android-10.0.0_r14android-10.0.0_r13android-10.0.0_r12android10-c2f2-s2-releaseandroid10-c2f2-s1-releaseandroid10-c2f2-release
Change-Id: I45a3e487cf32e80eb30c8cbd2820cc875dd3cd89
| -rw-r--r-- | vendor/qcom/common/dumpstate.te | 1 | ||||
| -rw-r--r-- | vendor/qcom/common/hal_dumpstate_impl.te | 20 |
2 files changed, 21 insertions, 0 deletions
diff --git a/vendor/qcom/common/dumpstate.te b/vendor/qcom/common/dumpstate.te index 1fd16418..06a2a749 100644 --- a/vendor/qcom/common/dumpstate.te +++ b/vendor/qcom/common/dumpstate.te @@ -20,4 +20,5 @@ allow dumpstate debugfs_mmc:dir search; allow dumpstate vendor_firmware_file:dir getattr; allow dumpstate vendor_firmware_file:filesystem getattr; +dontaudit dumpstate misc_logd_file:dir read; dontaudit dumpstate kernel:system module_request; diff --git a/vendor/qcom/common/hal_dumpstate_impl.te b/vendor/qcom/common/hal_dumpstate_impl.te index d5e5918b..ea4d30d4 100644 --- a/vendor/qcom/common/hal_dumpstate_impl.te +++ b/vendor/qcom/common/hal_dumpstate_impl.te @@ -134,3 +134,23 @@ allow hal_dumpstate_impl debugfs_pmic:dir r_dir_perms; allow hal_dumpstate_impl debugfs_pmic:file r_file_perms; allow hal_dumpstate_impl dumpstate:fifo_file write; + +dontaudit hal_dumpstate_impl binder_device:chr_file rw_file_perms; +dontaudit hal_dumpstate_impl vndbinder_device:chr_file rw_file_perms; +dontaudit hal_dumpstate_impl property_socket:sock_file rw_file_perms; +dontaudit hal_dumpstate_impl radio_vendor_data_file:dir r_dir_perms; +dontaudit hal_dumpstate_impl radio_vendor_data_file:file r_file_perms; +dontaudit hal_dumpstate_impl netmgr_data_file:dir r_dir_perms; +dontaudit hal_dumpstate_impl netmgr_data_file:file r_file_perms; +dontaudit hal_dumpstate_impl vendor_modem_diag_prop:file rw_file_perms; +dontaudit hal_dumpstate_impl vendor_tcpdump_log_prop:file rw_file_perms; +dontaudit hal_dumpstate_impl sysfs_usb_device:dir r_dir_perms; +dontaudit hal_dumpstate_impl sysfs_usb_device:file r_file_perms; +dontaudit hal_dumpstate_impl ssr_log_file:dir search; +dontaudit hal_dumpstate_impl ssr_log_file:file r_file_perms; +dontaudit hal_dumpstate_impl tcpdump_vendor_data_file:dir create_dir_perms; +dontaudit hal_dumpstate_impl tcpdump_vendor_data_file:file create_file_perms; +dontaudit hal_dumpstate_impl perfstatsd_exec:file rx_file_perms; +dontaudit hal_dumpstate_impl perfstatsd_service:service_manager find; +dontaudit hal_dumpstate_impl mpss_rfs_data_file:dir r_dir_perms; +dontaudit hal_dumpstate_impl mpss_rfs_data_file:file r_file_perms; |