Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "Add selinux permissions for NFC/eSIM fw upgrade" into sc-dev

Browse source
This commit is contained in:
Grace Chen 2021-04-06 00:28:22 +00:00 committed by Android (Google) Code Review
commit 404937b03b
3 changed files with 24 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
tracking_denials/ofl_app.te Normal file
View file

@ -0,0 +1,3 @@
# b/184005231
dontaudit ofl_app default_prop:file { read };

17
whitechapel/vendor/google/ofl_app.te vendored Normal file
View file

@ -0,0 +1,17 @@
# OFLBasicAgent app
type ofl_app, domain;
userdebug_or_eng(`
app_domain(ofl_app)
net_domain(ofl_app)
allow ofl_app app_api_service:service_manager find;
allow ofl_app nfc_service:service_manager find;
allow ofl_app radio_service:service_manager find;
allow ofl_app surfaceflinger_service:service_manager find;
# Access to directly update firmware on secure_element
typeattribute secure_element_device mlstrustedobject;
allow ofl_app secure_element_device:chr_file rw_file_perms;
')

5
whitechapel/vendor/google/seapp_contexts vendored
View file

@ -42,4 +42,7 @@ user=_app isPrivApp=true seinfo=platform name=com.google.android.connectivitymon
user=radio isPrivApp=true seinfo=platform name=com.google.RilConfigService domain=ril_config_service_app type=app_data_file user=radio isPrivApp=true seinfo=platform name=com.google.RilConfigService domain=ril_config_service_app type=app_data_file
# CBRS setup app # CBRS setup app
user=_app seinfo=platform name=com.google.googlecbrs domain=cbrs_setup_app type=app_data_file levelFrom=user user=_app seinfo=platform name=com.google.googlecbrs domain=cbrs_setup_app type=app_data_file levelFrom=user
# Domain for OFLBasicAgentApp to support NFC/eSIM fw upgrade
user=_app isPrivApp=true seinfo=platform name=com.thales.device.ofl.app.basicagent domain=ofl_app type=app_data_file levelFrom=user