sepolicy: allows pixelstat to access scsi devices node

pixelstats-vend: type=1400 audit(0.0:12): avc: denied { write } for name="slowio_read_cnt" dev="sysfs" ino=61046 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=1 Bug: 170746807 Test: reboot and check avc denied log Change-Id: I571b2c37bf6f646175ea6b6b18583b0d06856e82
author: Ocean Chen <oceanchen@google.com> 2020-10-22 12:02:49 +0800
committer: Ocean Chen <oceanchen@google.com> 2020-10-22 12:36:33 +0800
commit: 2888c074c1d1f1731460549a367e1a93c1213b98 (patch)
tree: f221c79aa135fbe01b7038d58725570c4bf6773e
parent: 5578a01bfa641deda9b761e64d4f4ceef7707815 (diff)
download: barbet-sepolicy-2888c074c1d1f1731460549a367e1a93c1213b98.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/vendor/google/pixelstats_vendor.te b/vendor/google/pixelstats_vendor.te
index d7129bf..1832dd5 100644
--- a/vendor/google/pixelstats_vendor.te
+++ b/vendor/google/pixelstats_vendor.te
@@ -3,3 +3,4 @@ type pixelstats_vendor, domain;
 
 type pixelstats_vendor_exec, exec_type, vendor_file_type, file_type;
 init_daemon_domain(pixelstats_vendor)
+allow pixelstats_vendor sysfs_scsi_devices_0000:file rw_file_perms;
author	Ocean Chen <oceanchen@google.com>	2020-10-22 12:02:49 +0800
committer	Ocean Chen <oceanchen@google.com>	2020-10-22 12:36:33 +0800
commit	2888c074c1d1f1731460549a367e1a93c1213b98 (patch)
tree	f221c79aa135fbe01b7038d58725570c4bf6773e
parent	5578a01bfa641deda9b761e64d4f4ceef7707815 (diff)
download	barbet-sepolicy-2888c074c1d1f1731460549a367e1a93c1213b98.tar.gz