diff options
| author | Subash Abhinov Kasiviswanathan <subashab@codeaurora.org> | 2019-11-26 17:11:44 -0700 |
|---|---|---|
| committer | alk3pInjection <webmaster@raspii.tech> | 2023-06-13 00:20:25 +0800 |
| commit | ebe00089a672f87e98b095e62451a16dc1bc628d (patch) | |
| tree | 6209ee119a4adb8db8165164c615244283f3e6b2 | |
| parent | 203994116450a4c955dad78089818e5cfb54a79e (diff) | |
sepolicy_vndr: legacy: add property to generic for loading shsusrd via netmgr
Add property to generic sepolicy for loading shsusrd from netmgr.
Fixes the following-
[ 66.051992] type=1107 audit(1549.328:591): uid=0 auid=4294967295
ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for
property=persist.vendor.data.shsusr_load pid=921 uid=1001 gid=1001
scontext=u:r:vendor_netmgrd:s0 tcontext=u:object_r:vendor_default_prop:s0
tclass=property_service permissive=0'
CRs-Fixed: 2575687
Change-Id: I32fb31a7f5e64c2095aee081fd855900be0d0701
| -rw-r--r-- | legacy/vendor/common/netmgrd.te | 3 | ||||
| -rw-r--r-- | legacy/vendor/common/property.te | 3 | ||||
| -rw-r--r-- | legacy/vendor/common/property_contexts | 3 |
3 files changed, 9 insertions, 0 deletions
diff --git a/legacy/vendor/common/netmgrd.te b/legacy/vendor/common/netmgrd.te index 31593c76..ad967e5b 100644 --- a/legacy/vendor/common/netmgrd.te +++ b/legacy/vendor/common/netmgrd.te @@ -102,6 +102,9 @@ hwbinder_use(netmgrd) binder_call(netmgrd, netd) allow netmgrd system_net_netd_hwservice:hwservice_manager find; +# Allow netmgrd to use shsusrd properties +set_prop(netmgrd, vendor_data_shsusr_prop) + allow netmgrd sysfs_net:dir r_dir_perms; allow netmgrd sysfs_net:file rw_file_perms; diff --git a/legacy/vendor/common/property.te b/legacy/vendor/common/property.te index 2e3c0067..a1a47863 100644 --- a/legacy/vendor/common/property.te +++ b/legacy/vendor/common/property.te @@ -147,6 +147,9 @@ vendor_restricted_prop(vendor_audio_prop) # Audio debug props vendor_internal_prop(vendor_audio_debug_prop) +# shsusrd props +vendor_restricted_prop(vendor_data_shsusr_prop); + #ss-restart vendor_internal_prop(vendor_ssr_prop) diff --git a/legacy/vendor/common/property_contexts b/legacy/vendor/common/property_contexts index a98afca3..ccc74dd7 100644 --- a/legacy/vendor/common/property_contexts +++ b/legacy/vendor/common/property_contexts @@ -121,6 +121,9 @@ vendor.debug.egl.swapinterval u:object_r:public_vendor_default_prop:s0 vendor.debug.egl.profiler u:object_r:public_vendor_default_prop:s0 vendor.debug.rs. u:object_r:public_vendor_default_prop:s0 +# shsusrd loading +persist.vendor.data.shsusr_load u:object_r:vendor_data_shsusr_prop:s0 + # cgroup follow ro.vendor.qti.cgroup_follow.enable u:object_r:vendor_cgroup_follow_prop:s0 ro.vendor.qti.cgroup_follow.dex2oat_only u:object_r:vendor_cgroup_follow_prop:s0 |