Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit b20966f8 authored by Nick Kralevich's avatar Nick Kralevich
Browse files

Allow shell serial_device read-write access 

When starting the emulator, the system console writes entries
to /dev/ttyS2. We need to allow the writes, otherwise this generates
denials when you run "emulator -verbose -logcat '*:v' -show-kernel"

Addresses the following denial:
type=1400 audit(1395076594.320:446): avc:  denied  { read write } for  pid=5600 comm="sh" path="/dev/ttyS2" dev="tmpfs" ino=1487 scontext=u:r:shell:s0 tcontext=u:object_r:serial_device:s0 tclass=chr_file

Bug: 13506702
Change-Id: I3729537cabb0bf8e8b2905d3def43a293bb1081f
parent 1cda15d3

target/board/generic/BoardConfig.mk

+1 −0
Original line number Diff line number Diff line
@@ -86,5 +86,6 @@ BOARD_SEPOLICY_UNION += \ 
        mediaserver.te \

        qemud.te \

        rild.te \

        shell.te \

        surfaceflinger.te \

        system_server.te

target/board/generic/sepolicy/shell.te

0 → 100644
+1 −0
Original line number Diff line number Diff line 
allow shell serial_device:chr_file rw_file_perms;

target/board/generic_mips/BoardConfig.mk

+1 −0
Original line number Diff line number Diff line
@@ -68,5 +68,6 @@ BOARD_SEPOLICY_UNION += \ 
        mediaserver.te \

        qemud.te \

        rild.te \

        shell.te \

        surfaceflinger.te \

        system_server.te

target/board/generic_x86/BoardConfig.mk

+1 −0
Original line number Diff line number Diff line
@@ -54,5 +54,6 @@ BOARD_SEPOLICY_UNION += \ 
        mediaserver.te \

        qemud.te \

        rild.te \

        shell.te \

        system_server.te \

        zygote.te

target/board/generic_x86/sepolicy/shell.te

0 → 100644
+1 −0
Original line number Diff line number Diff line 
allow shell serial_device:chr_file rw_file_perms;