Tuesday, January 12, 2021

audit2allow Tool

透過linux上的audit2allow工具來幫忙填寫,步驟如下:

挑出logcat中的avc資訊,轉存文字檔

透過command就可以幫你整理出來


avc.log


10-22 21:55:33.072 2353 2353 E SELinux : avc: denied { find } for interface=android.hardware.health::IHealth sid=u:r:emmclifereader:s0 pid=2924 scontext=u:r:emmclifereader:s0 tcontext=u:object_r:hal_health_hwservice:s0 tclass=hwservice_manager permissive=1

10-22 21:55:33.075 2924 2924 I emmclifereader: type=1400 audit(0.0:27): avc: denied { write } for name="property_service" dev="tmpfs" ino=12079 scontext=u:r:emmclifereader:s0 tcontext=u:object_r:property_socket:s0 tclass=sock_file permissive=1

10-22 21:55:33.075 2924 2924 I emmclifereader: type=1400 audit(0.0:28): avc: denied { connectto } for path="/dev/socket/property_service" scontext=u:r:emmclifereader:s0 tcontext=u:r:init:s0 tclass=unix_stream_socket permissive=1


audit2allow –i avc.log


allow emmclifereader init:unix_stream_socket connectto;

allow emmclifereader property_socket:sock_file write;

at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

n8n index

 【n8n免費本地端部署】Windows版|程式安裝x指令大補帖  【一鍵安裝 n8n】圖文教學,獲得無限額度自動化工具&限時免費升級企業版功能

  • [c++] Overloading binary operators (C++ only)
     #include <iostream> using namespace std; struct X {   // member binary operator   void operator*(int) {      cout << "void...
  • [Linux] 使用 bash shell 監測某個 daemon 的執行緒數量
     #!/bin/sh # Define the process name process_name=rsyslogd # Get minimum number of threads from command line parameters process_min_threads=...
  • [Architecture] 設計思維基礎
    一、設計思維的四條原則 以人为本(human) 推迟决策(ambiguity) 善于借鉴(redesign) 化虚为实(tangibility) 以人为本 设计的本质是社交。 尊重所有直接和间接与架构有关的人,换位思考,理解他们的感受。 推迟决策 推迟不确定的决策。 模糊的需求、...