msm8974-common: sepolicy: Update sysfs_mdnie, resolve denials

* avc: denied { setattr } for name="scenario" dev="sysfs" ino=12753
  scontext=u:r:init:s0 tcontext=u:object_r:sysfs_mdnie:s0 tclass=file
  permissive=0
* avc: denied { search } for name="mdnie" dev="sysfs" ino=12743i
  scontext=u:r:system_app:s0 tcontext=u:object_r:sysfs_mdnie:s0
  tclass=dir permissive=0

Change-Id: I4a0530136d7d1e6ee8ede0733e70de813382372b
This commit is contained in:
Kevin F. Haggerty 2018-11-25 15:28:31 -07:00
parent 828c5416ba
commit 241d260828
No known key found for this signature in database
GPG Key ID: 6D95512933112729
3 changed files with 4 additions and 6 deletions

View File

@ -37,9 +37,5 @@
/sys/module/dhd/parameters/firmware_path u:object_r:sysfs_wifi_writeable:s0
/sys/module/dhd/parameters/nvram_path u:object_r:sysfs_wifi_writeable:s0
# mdnie sysfs
/sys/devices/virtual/lcd/panel/panel/auto_brightness u:object_r:sysfs_mdnie:s0
/sys/devices/virtual/mdnie/mdnie/accessibility u:object_r:sysfs_mdnie:s0
/sys/devices/virtual/mdnie/mdnie/mode u:object_r:sysfs_mdnie:s0
/sys/devices/virtual/mdnie/mdnie/outdoor u:object_r:sysfs_mdnie:s0
/sys/devices/virtual/mdnie/mdnie/scenario u:object_r:sysfs_mdnie:s0
# sysfs - mdnie
/sys/devices/virtual/mdnie/mdnie(/.*)? u:object_r:sysfs_mdnie:s0

1
sepolicy/common/init.te Normal file
View File

@ -0,0 +1 @@
allow init sysfs_mdnie:file setattr;

View File

@ -1 +1,2 @@
allow system_app sysfs_mdnie:dir search;
allow system_app sysfs_mdnie:file rw_file_perms;