summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorPIPIPIG233666 <pig.priv@gmail.com>2019-12-29 10:09:14 -0500
committerArne Coucheron <arco68@gmail.com>2020-02-05 00:50:53 +0200
commit8e2091f486c511ba813eb24965ec9f766b5d5647 (patch)
treefc5eb9273f8b3d5810e6aa99431c4a858393c99a
parent6f988f2c8018327cb2793e6fd5ec78da71f3b5ff (diff)
downloadandroid_device_lineage_sepolicy-8e2091f486c511ba813eb24965ec9f766b5d5647.tar.gz
android_device_lineage_sepolicy-8e2091f486c511ba813eb24965ec9f766b5d5647.tar.bz2
android_device_lineage_sepolicy-8e2091f486c511ba813eb24965ec9f766b5d5647.zip
snap_app: Allow binder call with gpuservice
avc: denied { call } for scontext=u:r:snap_app:s0:c512,c768 tcontext=u:r:gpuservice:s0 tclass=binder permissive=0 app=org.lineageos.snap Change-Id: Icb3f08c65776fdd51fb6919bda7cc3ec3685ac9c
Diffstat
-rw-r--r--common/private/snap_app.te3
1 files changed, 3 insertions, 0 deletions
diff --git a/common/private/snap_app.te b/common/private/snap_app.te
index 40ecac8..c5721b9 100644
--- a/common/private/snap_app.te
+++ b/common/private/snap_app.te
@@ -35,3 +35,6 @@ allow snap_app self:process ptrace;
# Read and write system app data files passed over Binder.
allow snap_app system_app_data_file:file { read write getattr };
+
+# Binder call with gpuservice
+binder_call(snap_app, gpuservice)
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-14 18:30:24 +0000