0c59021e58
07-27 11:58:09.569 869 869 I auditd : type=1400 audit(0.0:2682598):
avc: denied { read } for comm="wifi_ext@1.0-se" name="driverdump" dev="proc"
ino=4026535980 scontext=u:r:hal_wifi_ext:s0 tcontext=u:object_r:proc:s0
tclass=file permissive=0
Bug: 239656339
Test: avc error is gone
Change-Id: Icf816897780fecc1bb35696e492e6fa2661abc20
17 lines
790 B
Plaintext
17 lines
790 B
Plaintext
allow hal_wifi_ext vendor_wlan_device:chr_file w_file_perms;
|
|
allow hal_wifi_ext vendor_wifi_vendor_data_file:dir rw_dir_perms;
|
|
|
|
# write to files owned by location daemon
|
|
allow hal_wifi_ext vendor_location_socket:dir rw_dir_perms;
|
|
allow hal_wifi_ext vendor_location_socket:{sock_file lnk_file} create_file_perms;
|
|
allow hal_wifi_ext vendor_location:unix_dgram_socket sendto;
|
|
allow hal_wifi_ext lowi_server:unix_dgram_socket sendto;
|
|
|
|
# Connect to vendor_location via vendor_location socket.
|
|
unix_socket_connect(hal_wifi, vendor_location, vendor_location)
|
|
allow hal_wifi_ext vendor_wifihal_socket:dir rw_dir_perms;
|
|
allow hal_wifi_ext vendor_wifihal_socket:sock_file create_file_perms;
|
|
|
|
# allow hal_wifi to write into /proc/debugdriver/driverdump
|
|
r_dir_file(hal_wifi_ext, vendor_proc_wifi_dbg);
|