Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

permissions required for OTA

Browse source 
Bug: 183174452
Test: do OTA under enforcing mode
Change-Id: I0edf7703713e24351f57ef0e68096ca03c59e6f8
This commit is contained in:
Adam Shih 2021-03-23 09:49:02 +08:00
parent f05cdba220
commit 7314a7b522
4 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
whitechapel/vendor/google/file.te vendored
View file

@ -40,6 +40,7 @@ type vendor_battery_debugfs, fs_type, debugfs_type, sysfs_type;
# Exynos sysfs
type sysfs_exynos_bts, sysfs_type, fs_type;
type sysfs_exynos_bts_stats, sysfs_type, fs_type;
type sysfs_ota, sysfs_type, fs_type;
# Exynos Firmware
type vendor_fw_file, vendor_file_type, file_type;

3
whitechapel/vendor/google/genfs_contexts vendored
View file

@ -181,6 +181,9 @@ genfscon sysfs /devices/platform/10960000.hsi2c/i2c-4/4-0008/wakeup/wakeup
genfscon sysfs /devices/platform/10970000.hsi2c/i2c-5/5-0043/wakeup/wakeup u:object_r:sysfs_wakeup:s0
genfscon sysfs /devices/platform/10d50000.hsi2c/i2c-6/6-0069/power_supply/main-charger/wakeup u:object_r:sysfs_wakeup:s0
# OTA
genfscon sysfs /devices/platform/14700000.ufs/pixel/boot_lun_enabled u:object_r:sysfs_ota:s0
# subsystem-coredump
genfscon sysfs /class/sscoredump/level u:object_r:sscoredump_sysfs_level:s0

1
whitechapel/vendor/google/hal_bootctl_default.te vendored
View file

@ -1,2 +1,3 @@
allow hal_bootctl_default sda_block_device:blk_file rw_file_perms;
allow hal_bootctl_default devinfo_block_device:blk_file r_file_perms;
allow hal_bootctl_default sysfs_ota:file rw_file_perms;

3
whitechapel/vendor/google/update_engine.te vendored Normal file
View file

@ -0,0 +1,3 @@
allow update_engine custom_ab_block_device:blk_file rw_file_perms;
allow update_engine modem_block_device:blk_file rw_file_perms;
allow update_engine proc_bootconfig:file r_file_perms;