热门标签
热门文章
- 1虚拟机kali2023 中docker docker-compose找不到,无法定位软件包_没有可用软件包 docker-compose
- 2ERROR: failed to solve: java:8: failed to do request:_error: failed to solve: java:8: failed to resolve
- 3开源项目推荐:人工智能初学者的天堂 —— AI-For-Beginners
- 4【Docker项目实战篇】Docker部署PDF多功能工具Stirling-PDF
- 52024年华为OD机试真题-分披萨-(C++/Java/python)-OD统一考试(C卷D卷)_od考试 分批萨
- 6docker安装 Mysql_docker安装mysql
- 7VLDB 2024 即将来袭!创邻科技将带来精彩分享
- 8【xilinx】Xilinx最强FPGA VU系列简介
- 9GitHacker的安装与使用
- 10LeetCode //C - 324. Wiggle Sort II
当前位置: article > 正文
【QCM6125】Android12 selinux权限修改及快速调试_neverallow check failed at
作者:爱喝兽奶帝天荒 | 2024-08-20 04:18:23
赞
踩
neverallow check failed at
【背景】:
在调试的过程中需要修改selinux权限,并快速验证修改是否有效或者修改后可以构建成功,以及常见问题处理
【快速调试验证】:
可以通过以下命令快速构建确认修改的selinux是否能够构建通过,以及验证:
$make selinux_policy //构建selinux规则
- 1
验证:
adb push out\target\product\sc138\system\etc\selinux /system/etc/
adb push out\target\product\sc138\vendor\etc\selinux /vendor/etc/
- 1
- 2
有的规则push无效,需要整编版本验证。
【常见错误】:
错误1:“neverallow check failed at out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil:22906 from system/sepolicy/private/property.te:47”
FAILED: out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil
out/soong/host/linux-x86/bin/checkpolicy -C -M -c 30 -o out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.conf/android_common/conf && cat system/sepolicy/private/technical_debt.cil >> out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil && out/soong/host/linux-x86/bin/secilc -m -M true -G -c 30 out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil -o /dev/null -f /dev/null # hash of input list: d6ecc2c4e157ea76b3d37465aa507252a4901a59eb2d9f9a33d3c2a8d1c7f7be
neverallow check failed at out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil:22906 from system/sepolicy/private/property.te:47
(neverallow base_typeattr_223 base_typeattr_751 (file (ioctl read write create setattr lock relabelfrom append unlink link rename open watch watch_mount watch_sb watch_with_perm watch_reads)))
<root>
allow at out/soong/.intermediates/system/sepolicy/userdebug_plat_sepolicy.cil/android_common/userdebug_plat_sepolicy.cil:26253
(allow vendor_init init_service_status_private_prop (file (read)))
Failed to generate binary
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
可以看到system/sepolicy/private/property.te文件47行的权限和自己新增的权限冲突,所以需要根据冲突原因修改对应的te文件限制。
-neverallow { domain -coredomain } {
+neverallow { domain -coredomain -vendor_init } {
- 1
- 2
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/爱喝兽奶帝天荒/article/detail/1005153
推荐阅读
相关标签
