My banking app tries to read the device's IMEI, subscriber ID, and ICCID by attempting to open
/sys/devices/platform/soc/2c00000.qcom,kgsl-3d0
but that triggers an SELinux rule, which causes the app to fail and shut down:
Code:
12-07 18:13:40.393 2153 2153 W RenderThread: type=1400 audit(0.0:79512): avc: denied { search } for name="2c00000.qcom,kgsl-3d0" dev="sysfs" ino=41048 scontext=u:r:untrusted_app_27:s0:c512,c768 tcontext=u:object_r:sysfs_msm_subsys:s0 tclass=dir permissive=0 app=com.scotiabank.mobile
12-07 18:13:40.439 1374 1498 I ActivityTaskManager: Displayed com.scotiabank.mobile/.MobileBanking: +451ms
12-07 18:13:40.985 2448 2731 W TelephonyPermissions: reportAccessDeniedToReadIdentifiers:com.scotiabank.mobile:getDeviceId:-1
12-07 18:13:40.988 2448 2731 W TelephonyPermissions: reportAccessDeniedToReadIdentifiers:com.scotiabank.mobile:getSubscriberId:1
12-07 18:13:40.993 2448 2731 W TelephonyPermissions: reportAccessDeniedToReadIdentifiers:com.scotiabank.mobile:getIccSerialNumber:1
I don't have this problem on my old LeEco Le Pro3 also running LineageOS 18.1. So I assume there is a difference in the SELinux policy? Would it be possible to fix this?