android_device_samsung_msm8.../sepolicy/common/file.te

26 lines
901 B
Plaintext
Raw Normal View History

type alarm_device, dev_type, mlstrustedobject;
type proc_bt_sleep, fs_type, proc_type;
msm8974-common: sepolicy: Resolve misc denials avc: denied { chown } for capability=0 scontext=u:r:thermal-engine:s0 tcontext=u:r:thermal-engine:s0 tclass=capability permissive=0 avc: denied { find } for interface=android.hardware.camera.provider::ICameraProvider pid=1315 scontext=u:r:mediaserver:s0 tcontext=u:object_r:hal_camera_hwservice:s0 tclass=hwservice_manager permissive=0 avc: denied { getattr } for pid=1940 comm="mount.ntfs" path="/dev/block/mmcblk0p23" dev="tmpfs" ino=6957 scontext=u:r:vold:s0 tcontext=u:object_r:system_block_device:s0 tclass=blk_file permissive=0 avc: denied { read write } for pid=1370 comm="mm-qcamera-daem" name="rear_corever" dev="sysfs" ino=24696 scontext=u:r:mm-qcamerad:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 avc: denied { search } for pid=561 comm="mm-qcamera-daem" name="camera" dev="sysfs" ino=24680 scontext=u:r:mm-qcamerad:s0 tcontext=u:object_r:sysfs_camera:s0 tclass=dir permissive=0 avc: denied { getattr } for pid=1950 comm="mount.ntfs" path="/dev/block/mmcblk0p24" dev="tmpfs" ino=8134 scontext=u:r:vold:s0 tcontext=u:object_r:cache_block_device:s0 tclass=blk_file permissive=0 avc: denied { getattr } for pid=1926 comm="fsck.ntfs" path="/dev/block" dev="tmpfs" ino=6956 scontext=u:r:fsck_untrusted:s0 tcontext=u:object_r:block_device:s0 tclass=dir permissive=0 avc: denied { getattr } for pid=1948 comm="mount.ntfs" path="/dev/block/mmcblk0p12" dev="tmpfs" ino=8090 scontext=u:r:vold:s0 tcontext=u:object_r:efs_block_device:s0 tclass=blk_file permissive=0 avc: denied { read } for pid=339 comm="mediaserver" name="rear_camfw_load" dev="sysfs" ino=24694 scontext=u:r:mediaserver:s0 tcontext=u:object_r:sysfs_camera:s0 tclass=file permissive=0 Change-Id: Ieb941d135d9f245f4a2bb9abb78e1b84bbef4b38
2018-03-26 14:37:07 +02:00
type sysfs_camera, fs_type, sysfs_type;
type sysfs_hal_pwr, fs_type, sysfs_type;
type sysfs_iio, fs_type, sysfs_type;
type sysfs_input, fs_type, sysfs_type;
msm8974-common: sepolicy: Resolve misc denials avc: denied { chown } for capability=0 scontext=u:r:thermal-engine:s0 tcontext=u:r:thermal-engine:s0 tclass=capability permissive=0 avc: denied { find } for interface=android.hardware.camera.provider::ICameraProvider pid=1315 scontext=u:r:mediaserver:s0 tcontext=u:object_r:hal_camera_hwservice:s0 tclass=hwservice_manager permissive=0 avc: denied { getattr } for pid=1940 comm="mount.ntfs" path="/dev/block/mmcblk0p23" dev="tmpfs" ino=6957 scontext=u:r:vold:s0 tcontext=u:object_r:system_block_device:s0 tclass=blk_file permissive=0 avc: denied { read write } for pid=1370 comm="mm-qcamera-daem" name="rear_corever" dev="sysfs" ino=24696 scontext=u:r:mm-qcamerad:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 avc: denied { search } for pid=561 comm="mm-qcamera-daem" name="camera" dev="sysfs" ino=24680 scontext=u:r:mm-qcamerad:s0 tcontext=u:object_r:sysfs_camera:s0 tclass=dir permissive=0 avc: denied { getattr } for pid=1950 comm="mount.ntfs" path="/dev/block/mmcblk0p24" dev="tmpfs" ino=8134 scontext=u:r:vold:s0 tcontext=u:object_r:cache_block_device:s0 tclass=blk_file permissive=0 avc: denied { getattr } for pid=1926 comm="fsck.ntfs" path="/dev/block" dev="tmpfs" ino=6956 scontext=u:r:fsck_untrusted:s0 tcontext=u:object_r:block_device:s0 tclass=dir permissive=0 avc: denied { getattr } for pid=1948 comm="mount.ntfs" path="/dev/block/mmcblk0p12" dev="tmpfs" ino=8090 scontext=u:r:vold:s0 tcontext=u:object_r:efs_block_device:s0 tclass=blk_file permissive=0 avc: denied { read } for pid=339 comm="mediaserver" name="rear_camfw_load" dev="sysfs" ino=24694 scontext=u:r:mediaserver:s0 tcontext=u:object_r:sysfs_camera:s0 tclass=file permissive=0 Change-Id: Ieb941d135d9f245f4a2bb9abb78e1b84bbef4b38
2018-03-26 14:37:07 +02:00
type sysfs_mdnie, fs_type, sysfs_type;
msm8974-common: sepolicy: Label sysfs_sec_* types, resolve denials * Rename sysfs_sec type to sysfs_sec_key * Add additional sysfs_sec_* types as appropriate * avc: denied { read } for name="temp_adc" dev="sysfs" ino=10538 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_sec_thermistor:s0 tclass=file permissive=1 * avc: denied { open } for name="temp_adc" dev="sysfs" ino=10538 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_sec_thermistor:s0 tclass=file permissive=1 * avc: denied { write } for name="ir_send" dev="sysfs" ino=21339 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_sec_ir:s0 tclass=file permissive=1 * avc: denied { write } for name="led_blink" dev="sysfs" ino=25722 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_sec_led:s0 tclass=file permissive=1 * avc: denied { write } for name="brightness" dev="sysfs" ino=23467 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_sec_touchkey:s0 tclass=file permissive=1 * avc: denied { setattr } for name="ir_send" dev="sysfs" ino=21339 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_ir:s0 tclass=file permissive=1 * avc: denied { setattr } for name="hall_irq_ctrl" dev="sysfs" ino=29565 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_key:s0 tclass=file permissive=1 * avc: denied { setattr } for name="epen_firm_update" dev="sysfs" ino=23585 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_epen:s0 tclass=file permissive=1 * avc: denied { setattr } for name="cmd" dev="sysfs" ino=23756 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_tsp:s0 tclass=file permissive=1 * avc: denied { write } for name="wakeup_keys" dev="sysfs" ino=29568 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_key:s0 tclass=file permissive=1 * avc: denied { open } for name="wakeup_keys" dev="sysfs" ino=29568 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_key:s0 tclass=file permissive=1 * avc: denied { read } for name="input" dev="sysfs" ino=24012 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_tsp:s0 tclass=lnk_file permissive=0 * avc: denied { setattr } for name="waketime" dev="sysfs" ino=29035 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_bamdmux:s0 tclass=file permissive=0 * avc: denied { setattr } for name="led_r" dev="sysfs" ino=25719 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_led:s0 tclass=file permissive=0 * avc: denied { setattr } for name="usb_sel" dev="sysfs" ino=28162 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_switch:s0 tclass=file permissive=0 * avc: denied { setattr } for name="brightness" dev="sysfs" ino=23468 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_touchkey:s0 tclass=file permissive=0 * avc: denied { setattr } for name="temperature" dev="sysfs" ino=10538 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_thermistor:s0 tclass=file permissive=0 * avc: denied { setattr } for name="barcode_send" dev="sysfs" ino=19231 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_barcode_emul:s0 tclass=file permissive=0 Change-Id: I66b6d2aab875a2706f2730be9755e8d9805ffb6e
2018-11-15 03:57:03 +01:00
type sysfs_sec_bamdmux, fs_type, sysfs_type;
type sysfs_sec_barcode_emul, fs_type, sysfs_type;
type sysfs_sec_epen, fs_type, sysfs_type;
type sysfs_sec_ir, fs_type, sysfs_type;
type sysfs_sec_key, fs_type, sysfs_type;
type sysfs_sec_led, fs_type, sysfs_type;
type sysfs_sec_switch, fs_type, sysfs_type;
type sysfs_sec_thermistor, fs_type, sysfs_type;
type sysfs_sec_touchkey, fs_type, sysfs_type;
type sysfs_sec_tsp, fs_type, sysfs_type;
type sysfs_usb_otg, fs_type, sysfs_type;
type sysfs_wifi_writeable, fs_type, sysfs_type;
type bt_fw_file, file_type;
type nfc_fw_file, file_type;
type wifi_efs_file, file_type;