sepolicy: allow charger to read /sys/fs/pstore/console-ramoops
Addresses the denial in charger mode:
[ 17.993733] type=1400 audit(1405412231.119:4): avc: denied { search } for pid=123 comm="charger" name="/" dev="pstore" ino=10287 scontext=u:r:healthd:s0 tcontext=u:object_r:pstorefs:s0 tclass=dir permissive=0
Change-Id: I95e65753a99aa61ef86b8eebb7083b3d450e6b7b
This commit is contained in:
Colin Cross
Nick Kralevich
parent
4644ac4836
commit
bb96bffc37
1 changed files with 6 additions and 0 deletions
|
|
@ -22,6 +22,12 @@ allow healthd sysfs:file write;
|
|||
### healthd: charger mode
|
||||
###
|
||||
|
||||
# Read /sys/fs/pstore/console-ramoops
|
||||
# Don't worry about overly broad permissions for now, as there's
|
||||
# only one file in /sys/fs/pstore
|
||||
allow healthd pstorefs:dir r_dir_perms;
|
||||
allow healthd pstorefs:file r_file_perms;
|
||||
|
||||
allow healthd graphics_device:dir r_dir_perms;
|
||||
allow healthd graphics_device:chr_file rw_file_perms;
|
||||
allow healthd input_device:dir r_dir_perms;
|
||||
|
|
|
|||
Loading…
Reference in a new issue