my mistake.
after moving the sepolicy.24 file I have these denials (plus the first one)
<5>[ 16.352783] type=1400 audit(1349358551.718:3): avc: denied {
getattr } for pid=468 comm="Thread-23" path="/cache/lost+found"
dev=mmcblk0p11 ino=11 scontext=u:r:media_app:s0
tcontext=u:object_r:unlabeled:s0 tclass=dir
<4>[ 20.491546] avc: received policyload notice (seqno=2)
<4>[ 20.494262] avc: received policyload notice (seqno=11)
<5>[ 357.789520] type=1400 audit(1349358893.156:6): avc: denied { write
} for pid=1222 comm="adbd" name="sepolicy.24" dev=mmcblk0p12 ino=529432
scontext=u:r:adbd:s0 tcontext=u:object_r:system_data_file:s0 tclass=file
<5>[ 357.791107] type=1400 audit(1349358893.156:7): avc: denied { open }
for pid=1222 comm="adbd" name="sepolicy.24" dev=mmcblk0p12 ino=529432
scontext=u:r:adbd:s0 tcontext=u:object_r:system_data_file:s0 tclass=file
<5>[ 357.809570] type=1400 audit(1349358893.171:8): avc: denied {
setattr } for pid=1222 comm="adbd" name="sepolicy.24" dev=mmcblk0p12
ino=529432 scontext=u:r:adbd:s0 tcontext=u:object_r:system_data_file:s0
tclass=file
So I reboot the phone and it stays only the first denials:
<5>[ 15.621246] type=1400 audit(1349359031.804:3): avc: denied {
getattr } for pid=453 comm="Thread-23" path="/cache/lost+found"
dev=mmcblk0p11 ino=11 scontext=u:r:media_app:s0
tcontext=u:object_r:unlabeled:s0 tclass=dir
<4>[ 20.224578] avc: received policyload notice (seqno=2)
<4>[ 20.227508] avc: received policyload notice (seqno=11)
To transfer the file I made a adb root, is this the problem?
On Thu, Oct 4, 2012 at 3:28 PM, Stephen Smalley <[email protected]> wrote:
> On Thu, 2012-10-04 at 15:25 +0200, Alexandra Test wrote:
> > The second one is working (I have only the first denial now).
> > I tried to modify the app.te file and do a 'make sepolicy' to
> > regenerate the kernel policy file.
> > this is the error
> > out/host/linux-x86/bin/checkpolicy: loading policy configuration from
> > out/target/product/maguro/obj/ETC/sepolicy_intermediates/policy.conf
> > external/sepolicy/bluetoothd.te":3:ERROR 'syntax error' at token
> > 'type' on line 4093:
> > # bluetoothd - bluetooth daemon
> > type bluetoothd, domain;
> > checkpolicy: error(s) encountered while parsing configuration
> > make: ***
> > [out/target/product/maguro/obj/ETC/sepolicy_intermediates/sepolicy.24]
> > Error 1
> >
> >
> > is the file modified or I will have always errors when I would try to
> > change any policy_
>
> You must have made a mistake when editing the app.te file. Likely on
> the line prior to the one shown, e.g. maybe you forgot the terminating
> semicolon for the dontaudit rule?
>
> --
> Stephen Smalley
> National Security Agency
>
>
