diff options
| author | Arian <arian.kulmer@web.de> | 2021-11-03 23:49:10 +0100 |
|---|---|---|
| committer | alk3pInjection <webmaster@raspii.tech> | 2023-06-12 20:26:53 +0800 |
| commit | 1794bf635527c8eb051d1df7f3a50873a9271888 (patch) | |
| tree | 977dc1796759ad73a7401a4cedcd6990aaa56bda | |
| parent | 3d701fb5d8cddc0e5e37e2ac83aeae8b9101caad (diff) | |
sepolicy_vndr: qva: Allow vendor_cnd to read wifi_hal_prop
The `wifi.interface` property was labelled as `exported_default_prop` by
system/sepolicy in android 11. Since android 12 it is labelled as
`wifi_hal_prop` which causes the following denial.
W libc : Access denied finding property "wifi.interface"
W cnd : type=1400 audit(0.0:22): avc: denied { read } for name="u:object_r:wifi_hal_prop:s0" dev="tmpfs" ino=26257 scontext=u:r:vendor_cnd:s0 tcontext=u:object_r:wifi_hal_prop:s0 tclass=file permissive=0
Change-Id: I6cf8ad4133ca3013d844d4ef3b2701de22f408b0
| -rw-r--r-- | qva/vendor/common/cnd.te | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/qva/vendor/common/cnd.te b/qva/vendor/common/cnd.te index 3a93d439..30dfa7cc 100644 --- a/qva/vendor/common/cnd.te +++ b/qva/vendor/common/cnd.te @@ -46,6 +46,9 @@ allow vendor_cnd self:{ allow vendor_cnd vendor_wifi_vendor_data_file:dir r_dir_perms; allow vendor_cnd vendor_wifi_vendor_wpa_socket:sock_file write; +# allow vendor_cnd to read wifi_hal_prop +get_prop(vendor_cnd, wifi_hal_prop) + #allow vendor_cnd daemon to invoke hostapd_cli domain_auto_trans(vendor_cnd, vendor_hostapd_exec, vendor_hostapd) allow vendor_cnd vendor_hostapd_socket:dir r_dir_perms; |