Evolution-X-Tensor/device_google_comet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

sepolicy: Add sepolicy for FPS am: 0017642efe

Browse source 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22727402

Change-Id: I3e40d950c4b8dc3148f23d527fb9d78dcf23b8dc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
eddielan 2023-04-20 10:06:25 +00:00 committed by Automerger Merge Worker
commit 3fdda9f95d
9 changed files with 51 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
comet-sepolicy.mk
View file

@ -1,3 +1,5 @@
# sepolicy exclusively for comet.
BOARD_SEPOLICY_DIRS += device/google/comet-sepolicy/vendor
# Fingerprint
BOARD_SEPOLICY_DIRS += device/google/comet-sepolicy/fingerprint_capacitance

1
fingerprint_capacitance/file.te Normal file
View file

@ -0,0 +1 @@
type sysfs_fingerprint, sysfs_type, fs_type;

5
fingerprint_capacitance/file_contexts Normal file
View file

@ -0,0 +1,5 @@
# FPC AIDL HAL
/vendor/bin/hw/android\.hardware\.biometrics\.fingerprint-service\.fpc42 u:object_r:hal_fingerprint_capacitance_exec:s0
# FPC HIDL HAL
/vendor/bin/hw/android\.hardware\.biometrics\.fingerprint@2\.1-service\.fpc u:object_r:fingerprint_factory_service_exec:s0

3
fingerprint_capacitance/fingerprint_factory_service.te Normal file
View file

@ -0,0 +1,3 @@
type fingerprint_factory_service, service_manager_type;
type fingerprint_factory_service_exec, exec_type, vendor_file_type, file_type;
init_daemon_domain(fingerprint_factory_service)

1
fingerprint_capacitance/genfs_contexts Normal file
View file

@ -0,0 +1 @@
genfscon sysfs /devices/platform/odm/odm:fp_fpc1020 u:object_r:sysfs_fingerprint:s0

35
fingerprint_capacitance/hal_fingerprint_capacitance.te Normal file
View file

@ -0,0 +1,35 @@
# hal_fingerprint_capacitance definition
type hal_fingerprint_capacitance, domain;
#hal_server_domain(hal_fingerprint_capacitance, hal_fingerprint)
type hal_fingerprint_capacitance_exec, exec_type, vendor_file_type, file_type;
init_daemon_domain(hal_fingerprint_capacitance)
#set_prop(hal_fingerprint_capacitance, vendor_fingerprint_prop)
# allow fingerprint to access file
#allow hal_fingerprint_capacitance fingerprint_device:chr_file rw_file_perms;
#allow hal_fingerprint_capacitance tee_device:chr_file rw_file_perms;
#allow hal_fingerprint_capacitance sysfs_fingerprint:dir r_dir_perms;
#allow hal_fingerprint_capacitance sysfs_fingerprint:file rw_file_perms;
# allow fingerprint to access power hal
#hal_client_domain(hal_fingerprint_capacitance, hal_power);
# allow fingerprint to find fwk service
#allow hal_fingerprint_capacitance fwk_stats_service:service_manager find;
# allow fingerprint to access sysfs_leds
#allow hal_fingerprint_capacitance sysfs_leds:dir search;
#allow hal_fingerprint_capacitance sysfs_leds:file rw_file_perms;
# allow fingerprint to access input_device
#allow hal_fingerprint_capacitance input_device:dir r_dir_perms;
#allow hal_fingerprint_capacitance input_device:chr_file rw_file_perms;
# allow fingerprint to access hwservice
#hwbinder_use(hal_fingerprint_capacitance)
#add_hwservice(hal_fingerprint_capacitance, hal_fingerprint_capacitance_ext_hwservice)
# allow fingerprint to access fwk sensor hwservice
#allow hal_fingerprint_capacitance fwk_sensor_hwservice:hwservice_manager find;

1
fingerprint_capacitance/hwservice.te Normal file
View file

@ -0,0 +1 @@
type hal_fingerprint_capacitance_ext_hwservice, hwservice_manager_type;

2
fingerprint_capacitance/hwservice_contexts Normal file
View file

@ -0,0 +1,2 @@
com.fingerprints42.extension::IFingerprintEngineering u:object_r:hal_fingerprint_capacitance_ext_hwservice:s0
com.fingerprints42.extension::IFingerprintSensorTest u:object_r:hal_fingerprint_capacitance_ext_hwservice:s0

1
fingerprint_capacitance/servicemanager.te Normal file
View file

@ -0,0 +1 @@
#binder_call(servicemanager, hal_fingerprint_capacitance)