Skip to content

Commit

Permalink
gts2-common: sepolicy add rules for live display color profiles.
Browse files Browse the repository at this point in the history 
Write new rules for live display color profile and use macro to write rules.

LiveDisplay: Setting mode: 4
livedisplay@2.0: type=1400 audit(0.0:72): avc: denied { write } for name="display" dev="mmcblk0p22" ino=1215853 scontext=u:r:hal_lineage_livedisplay_sysfs:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir
livedisplay@2.0: type=1300 audit(0.0:72): arch=40000028 syscall=322 per=800008 success=no exit=-13 a0=ffffff9c a1=a8a68d36 a2=20241 a3=1b6 items=2 ppid=1 ppcomm=init auid=4294967295 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 ses=4294967295 tty=(none) exe="/system/vendor/bin/hw/vendor.lineage.livedisplay@2.0-service.gts2" subj=u:r:hal_lineage_livedisplay_sysfs:s0 key=(null)

livedisplay@2.0: type=1400 audit(0.0:71): avc: denied { write } for name=".displaymodedefault" dev="mmcblk0p22" ino=1215863 scontext=u:r:hal_lineage_livedisplay_sysfs:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=file
livedisplay@2.0: type=1300 audit(0.0:71): arch=40000028 syscall=322 per=800008 success=no exit=-13 a0=ffffff9c a1=b3b10d36 a2=20241 a3=1b6 items=3 ppid=1 ppcomm=init auid=4294967295 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 ses=4294967295 tty=(none) exe="/system/vendor/bin/hw/vendor.lineage.livedisplay@2.0-service.gts2" subj=u:r:hal_lineage_livedisplay_sysfs:s0 key=(null)

livedisplay@2.0: type=1400 audit(0.0:61): avc: denied { create } for name=".displaymodedefault" scontext=u:r:hal_lineage_livedisplay_sysfs:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=file
livedisplay@2.0: type=1300 audit(0.0:61): arch=40000028 syscall=322 per=800008 success=no exit=-13 a0=ffffff9c a1=af499d36 a2=20241 a3=1b6 items=2 ppid=1 ppcomm=init auid=4294967295 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 ses=4294967295 tty=(none) exe="/system/vendor/bin/hw/vendor.lineage.livedisplay@2.0-service.gts2" subj=u:r:hal_lineage_livedisplay_sysfs:s0 key=(null)

livedisplay@2.0: type=1400 audit(0.0:87): avc: denied { write } for name="display" dev="mmcblk0p22" ino=1215852 scontext=u:r:hal_lineage_livedisplay_sysfs:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir
livedisplay@2.0: type=1300 audit(0.0:87): arch=40000028 syscall=322 per=800008 success=no exit=-13 a0=ffffff9c a1=b3f8bd58 a2=20241 a3=1b6 items=2 ppid=1 ppcomm=init auid=4294967295 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 ses=4294967295 tty=(none) exe="/system/vendor/bin/hw/vendor.lineage.livedisplay@2.0-service.gts2" subj=u:r:hal_lineage_livedisplay_sysfs:s0 key=(null)
  • Loading branch information
retiredtab-gerrit committed Aug 8, 2022
1 parent 9d019f0 commit 01b1ed6
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions sepolicy-rt/hal_lineage_livedisplay_sysfs.te
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
#============= hal_lineage_livedisplay_sysfs ==============
allow hal_lineage_livedisplay_sysfs sysfs:file { getattr open read write };

allow hal_lineage_livedisplay_sysfs sysfs:file rw_file_perms;
allow hal_lineage_livedisplay_sysfs vendor_data_file:dir rw_dir_perms;
allow hal_lineage_livedisplay_sysfs vendor_data_file:file create_file_perms;

0 comments on commit 01b1ed6

Please sign in to comment.