summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorVishal Mahaveer2016-09-20 12:20:05 -0500
committerVishal Mahaveer2016-09-20 12:20:05 -0500
commit2f654fc1d6a580658ec5a53184bd9738ffdca60f (patch)
treeb5a39cc1d888c973d783e5a489ba1c84836a99c2
parent64caf5c82d17537a9281ae8d3fe99b7e5defbd92 (diff)
downloaddevice-ti-jacinto6evm-2f654fc1d6a580658ec5a53184bd9738ffdca60f.tar.gz
device-ti-jacinto6evm-2f654fc1d6a580658ec5a53184bd9738ffdca60f.tar.xz
device-ti-jacinto6evm-2f654fc1d6a580658ec5a53184bd9738ffdca60f.zip
jacinto6evm: sepolicy: update pvr module_load permission
Latest AOSP sepolicy places restriction on where the kernel module file can be loaded from [1]. Adapt pvr sepolicy to this change. There is a change needed in pvr um to move from init_module to finit_module. [1] https://android-review.googlesource.com/#/c/214021/3 Change-Id: I77c938e2772243c559e5e3e5edfc91f17db816d8 Signed-off-by: Vishal Mahaveer <vishalm@ti.com>
-rw-r--r--sepolicy/pvr.te1
1 files changed, 1 insertions, 0 deletions
diff --git a/sepolicy/pvr.te b/sepolicy/pvr.te
index fe4bf37..1e9cfa8 100644
--- a/sepolicy/pvr.te
+++ b/sepolicy/pvr.te
@@ -9,3 +9,4 @@ allow pvr gpu_device:chr_file rw_file_perms;
9 9
10# allow graphics driver initialization 10# allow graphics driver initialization
11allow pvr self:capability sys_module; 11allow pvr self:capability sys_module;
12allow pvr system_file:system module_load;