diff options
| author | calvinpan <calvinpan@google.com> | 2021-01-06 15:12:54 +0800 |
|---|---|---|
| committer | calvinpan <calvinpan@google.com> | 2021-01-07 15:59:14 +0800 |
| commit | 01b96a3a966f075abcba27cb415cece348a3278e (patch) | |
| tree | 81e4cafe1b0080c80b8c5e497475cf26e91181f3 /private | |
| parent | a253346badbb8ef49cc9e89b4118ef9fc8eb7ed7 (diff) | |
| download | coral-sepolicy-01b96a3a966f075abcba27cb415cece348a3278e.tar.gz | |
Fix avc denied
01-05 21:25:56.913 621 621 E SELinux : avc: denied { find } for pid=7787 uid=10291 name=qchook scontext=u:r:platform_app:s0:c512,c768 tcontext=u:object_r:qchook_service:s0 tclass=service_manager permissive=0
Bug: 140764431
Test: TBD
Change-Id: I9400adb23989b0040701cf42a6eee66cde9a5b5f
Diffstat (limited to 'private')
| -rw-r--r-- | private/seapp_contexts | 15 | ||||
| -rw-r--r-- | private/uscc_omadm.te | 9 | ||||
| -rw-r--r-- | private/vzw_omadm_connmo.te | 9 | ||||
| -rw-r--r-- | private/vzw_omadm_dcmo.te | 9 | ||||
| -rw-r--r-- | private/vzw_omadm_diagmon.te | 9 | ||||
| -rw-r--r-- | private/vzw_omadm_trigger.te | 9 |
6 files changed, 60 insertions, 0 deletions
diff --git a/private/seapp_contexts b/private/seapp_contexts index 6b8b2cc..f97e9c8 100644 --- a/private/seapp_contexts +++ b/private/seapp_contexts @@ -3,3 +3,18 @@ user=_app seinfo=wfcactivation name=com.google.android.wfcactivation domain=wfc_ #Domain for Sprint Hidden Menu user=_app isPrivApp=true seinfo=platform name=com.google.android.hiddenmenu domain=sprint_hidden_menu type=app_data_file levelFrom=all + +# Domain for vzw omadm trigger +user=_app isPrivApp=true seinfo=platform name=com.google.omadm.trigger domain=vzw_omadm_trigger type=app_data_file levelFrom=all + +# Domain for vzw omadm connmo +user=_app isPrivApp=true seinfo=platform name=com.android.sdm.plugins.connmo domain=vzw_omadm_connmo type=app_data_file levelFrom=all + +# Domain for vzw omadm dcmo +user=_app isPrivApp=true seinfo=platform name=com.android.sdm.plugins.dcmo domain=vzw_omadm_dcmo type=app_data_file levelFrom=all + +# Domain for vzw omadm diagmon +user=_app isPrivApp=true seinfo=platform name=com.android.sdm.plugins.diagmon domain=vzw_omadm_diagmon type=app_data_file levelFrom=all + +# Domain for uscc omadm +user=_app isPrivApp=true seinfo=platform name=com.android.sdm.plugins.usccdm domain=uscc_omadm type=app_data_file levelFrom=all
\ No newline at end of file diff --git a/private/uscc_omadm.te b/private/uscc_omadm.te new file mode 100644 index 0000000..b53d66c --- /dev/null +++ b/private/uscc_omadm.te @@ -0,0 +1,9 @@ +type uscc_omadm, domain, coredomain; + +app_domain(uscc_omadm) +net_domain(uscc_omadm) + +# Services +allow uscc_omadm app_api_service:service_manager find; +allow uscc_omadm qchook_service:service_manager find; +allow uscc_omadm radio_service:service_manager find;
\ No newline at end of file diff --git a/private/vzw_omadm_connmo.te b/private/vzw_omadm_connmo.te new file mode 100644 index 0000000..dda0dc8 --- /dev/null +++ b/private/vzw_omadm_connmo.te @@ -0,0 +1,9 @@ +type vzw_omadm_connmo, domain, coredomain; + +app_domain(vzw_omadm_connmo) +net_domain(vzw_omadm_connmo) + +# Services +allow vzw_omadm_connmo app_api_service:service_manager find; +allow vzw_omadm_connmo qchook_service:service_manager find; +allow vzw_omadm_connmo radio_service:service_manager find;
\ No newline at end of file diff --git a/private/vzw_omadm_dcmo.te b/private/vzw_omadm_dcmo.te new file mode 100644 index 0000000..8a27ef3 --- /dev/null +++ b/private/vzw_omadm_dcmo.te @@ -0,0 +1,9 @@ +type vzw_omadm_dcmo, domain, coredomain; + +app_domain(vzw_omadm_dcmo) +net_domain(vzw_omadm_dcmo) + +# Services +allow vzw_omadm_dcmo app_api_service:service_manager find; +allow vzw_omadm_dcmo qchook_service:service_manager find; +allow vzw_omadm_dcmo radio_service:service_manager find;
\ No newline at end of file diff --git a/private/vzw_omadm_diagmon.te b/private/vzw_omadm_diagmon.te new file mode 100644 index 0000000..5c2bb4b --- /dev/null +++ b/private/vzw_omadm_diagmon.te @@ -0,0 +1,9 @@ +type vzw_omadm_diagmon, domain, coredomain; + +app_domain(vzw_omadm_diagmon) +net_domain(vzw_omadm_diagmon) + +# Services +allow vzw_omadm_diagmon app_api_service:service_manager find; +allow vzw_omadm_diagmon qchook_service:service_manager find; +allow vzw_omadm_diagmon radio_service:service_manager find;
\ No newline at end of file diff --git a/private/vzw_omadm_trigger.te b/private/vzw_omadm_trigger.te new file mode 100644 index 0000000..aea7a93 --- /dev/null +++ b/private/vzw_omadm_trigger.te @@ -0,0 +1,9 @@ +type vzw_omadm_trigger, domain, coredomain; + +app_domain(vzw_omadm_trigger) +net_domain(vzw_omadm_trigger) + +# Services +allow vzw_omadm_trigger app_api_service:service_manager find; +allow vzw_omadm_trigger qchook_service:service_manager find; +allow vzw_omadm_trigger radio_service:service_manager find;
\ No newline at end of file |