Android 中怎樣查詢SELinux導致的許可權受限有關問題
阿新 • • 發佈:2018-11-19
2. type=1400 audit(0.0:663): avc: denied { search } for name="wangpos.upgrade.system" dev="mmcblk0p30" ino=8246 scontext=u:r:uncrypt:s0 tcontext=u:object_r:system_app_data_file:s0 tclass=dir permissive=0
allow uncrypt system_data_file:dir { search getattr };
參考文件1:https://zhidao.baidu.com/question/1896836900618619580.html
>adb root
>adb remount
>adb shell setenforce 0(關掉許可權)
執行程式,打log,檢視avc,可以看到所有的avc,然後全部新增。
eg:
1.
type=1400 audit(0.0:666): avc: denied { open } for path="/data/data/wangpos.upgrade.system/ota.zip" dev="mmcblk0p30" ino=8287 scontext=u:r:uncrypt:s0 tcontext=u:object_r:system_app_data_file:s0 tclass=file permissive=0
2. type=1400 audit(0.0:663): avc: denied { search } for name="wangpos.upgrade.system" dev="mmcblk0p30" ino=8246 scontext=u:r:uncrypt:s0 tcontext=u:object_r:system_app_data_file:s0 tclass=dir permissive=0
allow uncrypt system_data_file:dir { search getattr };