diff options
| author | Android Build Coastguard Worker <android-build-coastguard-worker@google.com> | 2022-06-08 23:32:24 +0000 |
|---|---|---|
| committer | Android Build Coastguard Worker <android-build-coastguard-worker@google.com> | 2022-06-08 23:32:24 +0000 |
| commit | b616f92add4b5f7fbf3898ec9981b402b3d52d80 (patch) | |
| tree | 288082be18181d7cf02c26d909195d3fc3b2dc86 | |
| parent | 9f798a2230b14b1de95ded627373132343740b44 (diff) | |
| parent | 9e6eb07938555b263ce2af1126c74bb0fb5d12ed (diff) | |
| download | redbull-sepolicy-android13-mainline-permission-release.tar.gz | |
Snap for 8699383 from 9e6eb07938555b263ce2af1126c74bb0fb5d12ed to mainline-permission-releaseaml_per_331913010aml_per_331812030aml_per_331710050aml_per_331611010aml_per_331512020aml_per_331411000aml_per_331313010aml_per_331115020aml_per_331019040aml_per_330912010aml_per_330811030android13-mainline-permission-release
Change-Id: I4d133ce623381b049ef6f6368166a87a84dfca3e
| -rw-r--r-- | tracking_denials/dumpstate.te | 2 | ||||
| -rw-r--r-- | vendor/qcom/common/file.te | 1 | ||||
| -rw-r--r-- | vendor/qcom/common/genfs_contexts | 1 | ||||
| -rw-r--r-- | vendor/qcom/common/shell.te | 3 |
4 files changed, 7 insertions, 0 deletions
diff --git a/tracking_denials/dumpstate.te b/tracking_denials/dumpstate.te new file mode 100644 index 0000000..c415668 --- /dev/null +++ b/tracking_denials/dumpstate.te @@ -0,0 +1,2 @@ +# b/233569257 +dontaudit dumpstate app_zygote:process { signal }; diff --git a/vendor/qcom/common/file.te b/vendor/qcom/common/file.te index 0533681..99b8620 100644 --- a/vendor/qcom/common/file.te +++ b/vendor/qcom/common/file.te @@ -40,6 +40,7 @@ type sysfs_rmtfs, sysfs_type, fs_type; type adsprpcd_file, file_type, mlstrustedobject, vendor_file_type; type persist_time_file, file_type, vendor_persist_type; type sysfs_kgsl_proc, sysfs_type, fs_type; +type sysfs_kgsl_shell, sysfs_type, fs_type; type sysfs_diag, fs_type, sysfs_type; type vendor_radio_data_file, file_type, data_file_type, mlstrustedobject; type sensors_vendor_data_file, file_type, data_file_type; diff --git a/vendor/qcom/common/genfs_contexts b/vendor/qcom/common/genfs_contexts index 2ddedb9..5b8182a 100644 --- a/vendor/qcom/common/genfs_contexts +++ b/vendor/qcom/common/genfs_contexts @@ -6,6 +6,7 @@ genfscon sysfs /class/uio genfscon sysfs /devices/virtual/kgsl/kgsl/proc u:object_r:sysfs_kgsl_proc:s0 genfscon sysfs /devices/platform/soc/0.qcom,rmtfs_sharedmem u:object_r:sysfs_rmtfs:s0 genfscon sysfs /devices/platform/soc/soc:qcom,kgsl-hyp u:object_r:sysfs_msm_subsys:s0 +genfscon sysfs /devices/platform/soc/3d00000.qcom,kgsl-3d0/kgsl/kgsl-3d0/perfcounter u:object_r:sysfs_kgsl_shell:s0 genfscon sysfs /bus/esoc u:object_r:sysfs_esoc:s0 genfscon sysfs /bus/msm_subsys u:object_r:sysfs_msm_subsys:s0 genfscon debugfs /wlan u:object_r:debugfs_wlan:s0 diff --git a/vendor/qcom/common/shell.te b/vendor/qcom/common/shell.te new file mode 100644 index 0000000..cd0e4a4 --- /dev/null +++ b/vendor/qcom/common/shell.te @@ -0,0 +1,3 @@ +# allow shell users to control kgsl perfcounters +allow shell sysfs_kgsl_shell:file rw_file_perms; +allow shell sysfs_msm_subsys:dir r_dir_perms; |