| allow keystore radio:fd use; | avc: denied { use } for pid=6128 comm="dumpsys" path="/storage/emulated/legacy/ACT_LOGS/2013-08-05-08-26-30/act_bugreport_.txt" dev="sdcardfs" ino=522363 scontext=u:r:keystore:s0 tcontext=u:r:radio:s0 tclass=fd |
| allow keystore sdcard_internal:file append; | avc: denied { append } for pid=6128 comm="dumpsys" path="/storage/emulated/legacy/ACT_LOGS/2013-08-05-08-26-30/act_bugreport_.txt" dev="sdcardfs" ino=522363 scontext=u:r:keystore:s0 tcontext=u:object_r:sdcard_internal:s0 tclass=file |
| allow platform_app graphics_device:chr_file { read write ioctl open }; | avc: denied { read write } for pid=6092 comm="id.app.storycam" name="fb0" dev="tmpfs" ino=6024 scontext=u:r:platform_app:s0 tcontext=u:object_r:graphics_device:s0 tclass=chr_file |
우측의 로그가 a.txt 면
a.txt | audit2allow 하면 좌측의 allow rule이 만들어 진다.
그게 아니더라도
allow scontext tcontext ; tclass { permission };
으로 만들어도 됨.
댓글 없음:
댓글 쓰기
국정원의 댓글 공작을 지탄합니다.