NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[ALPS04721702] Save log into data partition

Browse Source 
1. Add SELinux permission

MTK-Commit-Id: 49d711749e59016b1e46233c4569c9d22d957f3d

Change-Id: If172698697fa5005f4548328665ea6c4739315c8
CR-Id: ALPS04721702
Feature: Modem Log Tool
This commit is contained in:
bo.shang 2020-01-18 10:18:19 +08:00 committed by Guoyi Qu
parent e045492863
commit c6f62897b6
6 changed files with 13 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
non_plat/emdlogger.te
View File

@ -86,10 +86,6 @@ allow emdlogger aee_aed:unix_stream_socket connectto;
allow emdlogger para_block_device:blk_file { read open write };
allow emdlogger proc_lk_env:file { read write ioctl open };
#Android O for created file in data
file_type_auto_trans(emdlogger, system_data_file, mdlog_data_file)
## purpose: avc: denied { read } for name="plat_file_contexts"
allow emdlogger file_contexts_file:file { read getattr open map};

4
non_plat/mdlogger.te
View File

@ -46,10 +46,6 @@ allow mdlogger media_rw_data_file:dir { create_dir_perms };
#security issue control
allow mdlogger aee_aed:unix_stream_socket connectto;
#Android O for created file in data
file_type_auto_trans(mdlogger, system_data_file, mdlog_data_file)
## purpose: avc: denied { read } for name="plat_file_contexts"
allow emdlogger file_contexts_file:file { read getattr open};

5
plat_private/cmddumper.te
View File

@ -33,4 +33,7 @@ allow cmddumper media_rw_data_file:dir { create_dir_perms };
# purpose: access plat_file_contexts
allow cmddumper file_contexts_file:file { read getattr open };
## Save C2K modem log into data
allow cmddumper debuglog_data_file:dir {relabelto create_dir_perms};
allow cmddumper debuglog_data_file:file create_file_perms;
allow cmddumper system_data_file:dir create_dir_perms;

5
plat_private/emdlogger.te
View File

@ -78,3 +78,8 @@ allow emdlogger vendor_default_prop:file { read getattr open };
## purpose: read modem db and filter folder and file
allow emdlogger mddb_filter_data_file:dir { r_dir_perms };
allow emdlogger mddb_filter_data_file:file { r_file_perms };
# save log into /data/debuglogger
allow emdlogger debuglog_data_file:dir {relabelto create_dir_perms};
allow emdlogger debuglog_data_file:file create_file_perms;
allow emdlogger system_data_file:dir create_dir_perms;

4
plat_private/mdlogger.te
View File

@ -51,3 +51,7 @@ allow mdlogger system_file:dir read;
## purpose: read modem db and filter folder and file
allow mdlogger mddb_filter_data_file:dir { r_dir_perms };
allow mdlogger mddb_filter_data_file:file { r_file_perms };
## Save modem log into data
allow mdlogger debuglog_data_file:dir {relabelto create_dir_perms};
allow mdlogger debuglog_data_file:file create_file_perms;
allow mdlogger system_data_file:dir create_dir_perms;

1
plat_private/netdiag.te
View File

@ -101,4 +101,3 @@ allow netdiag debuglog_data_file:dir {relabelto create_dir_perms};
allow netdiag debuglog_data_file:file create_file_perms;
allow netdiag system_data_file:dir { create_dir_perms relabelfrom };
allow netdiag file_contexts_file:file { r_file_perms };
file_type_auto_trans(netdiag, system_data_file, debuglog_data_file)