-
- Downloads
system_server: access to /proc/sys/fs/pipe-max-size
Label /proc/sys/fs/pipe-max-size with new type proc_pipe_conf and give
system_server access to it.
Addresses this denial:
avc: denied { read } for name="pipe-max-size" dev="proc" ino=93817
scontext=u:r:system_server:s0 tcontext=u:object_r:proc:s0 tclass=file
permissive=0
Bug: 69175449
Bug: 69324398
Test: sailfish boots
Test: adb bugreport
Test: craft an unresponsive app, trigger ANR, make sure traces are dumped
into /data/anr
Above denial from system_server not observed, no denials to proc_pipe_conf
observed.
Change-Id: I7c71f05820a4945ba982e29f76e9d9f4458b2b59
Showing
- private/compat/26.0/26.0.cil 1 addition, 0 deletionsprivate/compat/26.0/26.0.cil
- private/genfs_contexts 1 addition, 0 deletionsprivate/genfs_contexts
- private/system_server.te 12 additions, 14 deletionsprivate/system_server.te
- public/dumpstate.te 9 additions, 6 deletionspublic/dumpstate.te
- public/file.te 1 addition, 0 deletionspublic/file.te
Loading
Please register or sign in to comment