Google Git
Sign in
android / device / moto / shamu / 5181b7b3ebff1e9f7a1d0205a78f51d999852855
commit5181b7b3ebff1e9f7a1d0205a78f51d999852855[log] [tgz]
authorNick Kralevich <nnk@google.com>Fri Feb 06 17:50:32 2015 -0800
committerNick Kralevich <nnk@google.com>Fri Feb 06 17:50:32 2015 -0800
tree489f24b1f4c118d5004412f4ff1ad35e0d6de9fb
parentd7b910cf62cc304428b805c89159c8e96a77ded0 [diff]
dontaudit sensors self:capability net_raw

The kernel code does a permission check of both net_bind_service and
net_raw, and allows access if either one returns true.
It does the net_raw check first, triggering an SELinux denial.
No need to audit.

Addresses the following denial:

  avc: denied { net_raw } for pid=272 comm="sensors.qcom" capability=13 scontext=u:r:sensors:s0 tcontext=u:r:sensors:s0 tclass=capability permissive=0

Bug: 18417109
Change-Id: I1519371b81ca3d061042ff2e9eb2afc5927c65b1
1 file changed
tree: 489f24b1f4c118d5004412f4ff1ad35e0d6de9fb
  1. bdAddrLoader/
  2. bluetooth/
  3. camera/
  4. dataservices/
  5. dumpstate/
  6. factory-images/
  7. liblight/
  8. nfc/
  9. overlay/
  10. power/
  11. qrngd/
  12. self-extractors/
  13. sepolicy/
  14. ShamuLayout/
  15. voice_processing/
  16. Android.mk
  17. AndroidProducts.mk
  18. aosp_shamu.mk
  19. apq8084-taiko-tfa9890_stereo_co_Button_Jack.kl
  20. atmel_mxt_ts.idc
  21. audio_effects.conf
  22. audio_policy.conf
  23. bcmdhd.cal
  24. board-info.txt
  25. BoardConfig.mk
  26. CleanSpec.mk
  27. device.mk
  28. egl.cfg
  29. fstab.shamu
  30. gpio-keys.kl
  31. gps.conf
  32. init.mmi.touch.sh
  33. init.shamu.diag.rc.user
  34. init.shamu.diag.rc.userdebug
  35. init.shamu.power.rc
  36. init.shamu.rc
  37. init.shamu.usb.rc
  38. media_codecs.xml
  39. media_profiles.xml
  40. mixer_paths.xml
  41. proprietary-blobs.txt
  42. releasetools.py
  43. sec_config
  44. spn-conf.xml
  45. ueventd.shamu.rc
  46. vendor_owner_info.txt
  47. vendorsetup.sh