Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

sepolicy: fix fingerprint sepolicy

Browse source 
04-16 01:56:07.948  1039  1039 W fingerprint@2.1: type=1400 audit(0.0:110):
avc: denied { write } for name="wakeup_enable" dev="sysfs" ino=69197
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:sysfs:s0
tclass=file permissive=0

Bug: 185538163
Test: Build Pass
Change-Id: I8f75daf22577e6a68f3b2a0250eebebd1873ea28
This commit is contained in:
eddielan 2021-04-16 13:16:43 +08:00
parent ca24e70422
commit 75a9ea1ee4
3 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
whitechapel/vendor/google/file.te vendored
View file

@ -58,6 +58,9 @@ type sensor_vendor_data_file, file_type, data_file_type, mlstrustedobject;
type sensors_cal_file, file_type; type sensors_cal_file, file_type;
type sysfs_nanoapp_cmd, sysfs_type, fs_type; type sysfs_nanoapp_cmd, sysfs_type, fs_type;
# Fingerprint
type sysfs_fingerprint, sysfs_type, fs_type;
# CHRE # CHRE
type chre_socket, file_type; type chre_socket, file_type;

3
whitechapel/vendor/google/genfs_contexts vendored
View file

@ -66,6 +66,9 @@ genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/4-0043 u:object
genfscon sysfs /devices/platform/10970000.hsi2c/i2c-5/5-0042 u:object_r:sysfs_vibrator:s0 genfscon sysfs /devices/platform/10970000.hsi2c/i2c-5/5-0042 u:object_r:sysfs_vibrator:s0
genfscon sysfs /devices/platform/10970000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 genfscon sysfs /devices/platform/10970000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0
# Fingerprint
genfscon sysfs /devices/platform/odm/odm:fp_fpc1020 u:object_r:sysfs_fingerprint:s0
# System_suspend # System_suspend
genfscon sysfs /devices/platform/10d50000.hsi2c/i2c-5/5-0069/power_supply/main-charger/wakeup u:object_r:sysfs_wakeup:s0 genfscon sysfs /devices/platform/10d50000.hsi2c/i2c-5/5-0069/power_supply/main-charger/wakeup u:object_r:sysfs_wakeup:s0
genfscon sysfs /devices/platform/cpif/wakeup/wakeup u:object_r:sysfs_wakeup:s0 genfscon sysfs /devices/platform/cpif/wakeup/wakeup u:object_r:sysfs_wakeup:s0

2
whitechapel/vendor/google/hal_fingerprint_default.te vendored
View file

@ -4,5 +4,7 @@ allow hal_fingerprint_default sysfs_batteryinfo:file r_file_perms;
allow hal_fingerprint_default sysfs_batteryinfo:dir search; allow hal_fingerprint_default sysfs_batteryinfo:dir search;
allow hal_fingerprint_default self:netlink_socket create_socket_perms_no_ioctl; allow hal_fingerprint_default self:netlink_socket create_socket_perms_no_ioctl;
allow hal_fingerprint_default dmabuf_system_heap_device:chr_file r_file_perms; allow hal_fingerprint_default dmabuf_system_heap_device:chr_file r_file_perms;
allow hal_fingerprint_default sysfs_fingerprint:dir r_dir_perms;
allow hal_fingerprint_default sysfs_fingerprint:file rw_file_perms;
get_prop(hal_fingerprint_default, fingerprint_ghbm_prop) get_prop(hal_fingerprint_default, fingerprint_ghbm_prop)
add_hwservice(hal_fingerprint_default, hal_fingerprint_ext_hwservice) add_hwservice(hal_fingerprint_default, hal_fingerprint_ext_hwservice)