Gitiles
Code Review Sign In
gerrit-public.fairphone.software / device / google / cuttlefish / f9bdd4f664d437b7972aa0a566630080207827ad
commitf9bdd4f664d437b7972aa0a566630080207827ad[log] [tgz]
authorAlex Klyubin <klyubin@google.com>Thu Aug 24 16:18:50 2017 -0700
committerAlex Klyubin <klyubin@google.com>Thu Aug 24 16:23:46 2017 -0700
treee1b1e400a2b91cda5f55a1f895715a6cab731cc1
parenta8b420aa10452db9da73f3e5021e013a414b1b58 [diff]
Address sepolicy denials for region e2e test

denied { dac_override } for comm="vsoc_guest_regi" capability=1 scontext=u:r:vsoc_guest_region_e2e_test:s0 tcontext=u:r:vsoc_guest_region_e2e_test:s0 tclass=capability
denied { read write } for comm="vsoc_guest_regi" name="e2e_primary" dev="tmpfs" scontext=u:r:vsoc_guest_region_e2e_test:s0 tcontext=u:object_r:device:s0 tclass=chr_file
denied { open } for comm="vsoc_guest_regi" path="/dev/e2e_primary" dev="tmpfs" scontext=u:r:vsoc_guest_region_e2e_test:s0 tcontext=u:object_r:device:s0 tclass=chr_file
denied { ioctl } for comm="vsoc_guest_regi" path="/dev/e2e_primary" dev="tmpfs" ioctlcmd=f504 scontext=u:r:vsoc_guest_region_e2e_test:s0 tcontext=u:object_r:device:s0 tclass=chr_file
denied { ioctl } for comm="vsoc_guest_regi" path="/dev/e2e_secondary" dev="tmpfs" ioctlcmd=f506 scontext=u:r:vsoc_guest_region_e2e_test:s0 tcontext=u:object_r:device:s0 tclass=chr_file
denied { read write } for comm="vsoc_guest_regi" name="e2e_managed" dev="tmpfs" scontext=u:r:vsoc_guest_region_e2e_test:s0 tcontext=u:object_r:device:s0 tclass=chr_file

Test: Device boots
Test: When device is running:
      cd device/google/cuttlefish_common && \
      bazel build ... && \
      bazel-bin/host_region_e2e_test
      All tests pass
Bug: 28053261

Change-Id: I54d706722720c7615992ffb0b84ff91519433f8a
3 files changed
tree: e1b1e400a2b91cda5f55a1f895715a6cab731cc1
  1. shared/
  2. vsoc_x86/
  3. vsoc_x86_64/
  4. Android.mk
  5. AndroidProducts.mk
  6. vendorsetup.sh