diff options
| author | klinesjiang <klinesjiang@google.com> | 2019-06-17 12:05:02 +0800 |
|---|---|---|
| committer | Klines Jiang <klinesjiang@google.com> | 2019-06-26 03:18:55 +0000 |
| commit | 5fb4da31320d64bcd933b5056a67615a728cb5c9 (patch) | |
| tree | 8e08b1bea848359c44d47c528aceb9ac595272d0 | |
| parent | 42900d6dff8dfd5787ced3eb9b4c0c342ef2ac90 (diff) | |
| download | marlin-5fb4da31320d64bcd933b5056a67615a728cb5c9.tar.gz | |
Add sepolicy for RamdumpService to access property sys.boot.reason on M1/S1
Denied pattern is:
avc: denied { read } for name="u:object_r:system_boot_reason_prop:s0" dev="tmpfs" ino=21223 scontext=u:r:ramdump_app:s0:c206,c256,c512,c768 tcontext=u:object_r:system_boot_reason_prop:s0 tclass=file permissive=0
Bug: 135420149
Bug: 132220248
Merged-In: I32e3b9ecb31fb46f28c28153ad79a088735de544
Change-Id: I32e3b9ecb31fb46f28c28153ad79a088735de544
| -rw-r--r-- | sepolicy/ramdump_app.te | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sepolicy/ramdump_app.te b/sepolicy/ramdump_app.te index ecb5d834..09dee815 100644 --- a/sepolicy/ramdump_app.te +++ b/sepolicy/ramdump_app.te @@ -10,4 +10,5 @@ userdebug_or_eng(` allow ramdump_app ramdump_vendor_data_file:dir create_dir_perms; set_prop(ramdump_app, vendor_ramdump_prop); + get_prop(ramdump_app, system_boot_reason_prop) ') |