1c0c010261
Resolves denials such as:
avc: denied { set } for property =ctl.bugreport scontext=u:r:system_app:s0 tcontext=u:object_r:ctl_default_prop:s0 tclass=property_service
avc: denied { write } for pid=4415 comm=5369676E616C2043617463686572 name="anr" dev="dm-0" ino=358337 scontext=u:r:system_app:s0 tcontext=u:object_r:anr_data_file:s0 tclass=dir
avc: denied { add_name } for pid=4415 comm=5369676E616C2043617463686572 name="traces.txt" scontext=u:r:system_app:s0 tcontext=u:object_r:anr_data_file:s0 tclass=dir
avc: denied { create } for pid=4415 comm=5369676E616C2043617463686572 name="traces.txt" scontext=u:r:system_app:s0 tcontext=u:object_r:anr_data_file:s0 tclass=file
Change-Id: I71d0ede049136d72f28bdc85d52fcefa2f7d128f
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
58 lines
2.2 KiB
Text
58 lines
2.2 KiB
Text
##########################
|
|
# property service keys
|
|
#
|
|
#
|
|
net.rmnet u:object_r:radio_prop:s0
|
|
net.gprs u:object_r:radio_prop:s0
|
|
net.ppp u:object_r:radio_prop:s0
|
|
net.qmi u:object_r:radio_prop:s0
|
|
net.lte u:object_r:radio_prop:s0
|
|
net.cdma u:object_r:radio_prop:s0
|
|
gsm. u:object_r:radio_prop:s0
|
|
persist.radio u:object_r:radio_prop:s0
|
|
net.dns u:object_r:radio_prop:s0
|
|
sys.usb.config u:object_r:radio_prop:s0
|
|
|
|
ril. u:object_r:rild_prop:s0
|
|
|
|
net. u:object_r:system_prop:s0
|
|
dev. u:object_r:system_prop:s0
|
|
runtime. u:object_r:system_prop:s0
|
|
hw. u:object_r:system_prop:s0
|
|
sys. u:object_r:system_prop:s0
|
|
sys.powerctl u:object_r:powerctl_prop:s0
|
|
service. u:object_r:system_prop:s0
|
|
wlan. u:object_r:system_prop:s0
|
|
dhcp. u:object_r:system_prop:s0
|
|
bluetooth. u:object_r:bluetooth_prop:s0
|
|
|
|
debug. u:object_r:debug_prop:s0
|
|
debug.db. u:object_r:debuggerd_prop:s0
|
|
log. u:object_r:shell_prop:s0
|
|
service.adb.root u:object_r:shell_prop:s0
|
|
service.adb.tcp.port u:object_r:shell_prop:s0
|
|
|
|
persist.audio. u:object_r:audio_prop:s0
|
|
persist.sys. u:object_r:system_prop:s0
|
|
persist.service. u:object_r:system_prop:s0
|
|
persist.service.bdroid. u:object_r:bluetooth_prop:s0
|
|
persist.security. u:object_r:system_prop:s0
|
|
|
|
# mmac persistent properties
|
|
persist.mmac. u:object_r:security_prop:s0
|
|
|
|
# selinux non-persistent properties
|
|
selinux. u:object_r:security_prop:s0
|
|
|
|
# default property context
|
|
* u:object_r:default_prop:s0
|
|
|
|
# data partition encryption properties
|
|
vold. u:object_r:vold_prop:s0
|
|
crypto. u:object_r:vold_prop:s0
|
|
|
|
# ctl properties
|
|
ctl.dumpstate u:object_r:ctl_dumpstate_prop:s0
|
|
ctl.ril-daemon u:object_r:ctl_rildaemon_prop:s0
|
|
ctl.bugreport u:object_r:ctl_bugreport_prop:s0
|
|
ctl. u:object_r:ctl_default_prop:s0
|