mako gpu

Fri, 07 Dec 2012 08:33:16 -0800

while trying to figure out labels for devices on mako I came across /dev/kgsl-3d0, which appears to be the gpu (it is created by kernel/msm/arch/arm/mach-msm/lge/mako/board-mako-gpu.c) so I labeled it video_device (which I believe is used for this sort of thing). Unfortunately, and to my dismay it looks like everything in the OS accesses this directly:
<5>[ 527.752540] type=1400 audit(1354896491.180:94): avc: denied { ioctl } for pid=973 comm="ndroid.launcher" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:shared_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file <5>[ 527.761086] type=1400 audit(1354896491.190:95): avc: denied { read write } for pid=802 comm="ndroid.systemui" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:platform_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file <5>[ 527.870532] type=1400 audit(1354896491.300:96): avc: denied { read write } for pid=973 comm="ndroid.launcher" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:shared_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file <5>[ 734.848283] type=1400 audit(1354897348.627:108): avc: denied { ioctl } for pid=973 comm="ndroid.launcher" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:shared_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file <5>[ 734.894033] type=1400 audit(1354897348.678:110): avc: denied { ioctl } for pid=802 comm="ndroid.systemui" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:platform_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file <5>[ 734.915763] type=1400 audit(1354897348.688:112): avc: denied { read write } for pid=802 comm="ndroid.systemui" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:platform_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file <5>[ 734.937402] type=1400 audit(1354897348.718:113): avc: denied { read write } for pid=973 comm="ndroid.launcher" path="/dev/kgsl-3d0" dev="tmpfs" ino=8305 scontext=u:r:shared_app:s0 tcontext=u:object_r:video_device:s0 tclass=chr_file 


Should I create a new type? What would it be? Perhaps I'm 
misunderstanding what this device is for. Anyone have ideas?


--
This message was distributed to subscribers of the seandroid-list mailing list.
If you no longer wish to subscribe, send mail to [email protected] with
the words "unsubscribe seandroid-list" without quotes as the message.






















					Reply via email to