Create sepolicy for the fingerprint GHBM sysprop
Bug: 184761756 Bug: 183728349 Test: adb logcat | grep "avc: denied" Change-Id: I5209bdf859e86a83ac3fa29ecf8bfd8d5b6d88ce
This commit is contained in:
Ilya Matyukhin
parent
71e96842ca
commit
b9e10feefb
5 changed files with 19 additions and 8 deletions
|
|
@ -6,6 +6,17 @@ BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/tracking_denials
|
|||
|
||||
PRODUCT_PRIVATE_SEPOLICY_DIRS += device/google/gs101-sepolicy/private
|
||||
|
||||
# Display
|
||||
BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/display/common
|
||||
BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/display/gs101
|
||||
|
||||
# Micro sensor framework (usf)
|
||||
BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/usf
|
||||
|
||||
# system_ext
|
||||
SYSTEM_EXT_PUBLIC_SEPOLICY_DIRS += device/google/gs101-sepolicy/system_ext/public
|
||||
SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += device/google/gs101-sepolicy/system_ext/private
|
||||
|
||||
#
|
||||
# Pixel-wide
|
||||
#
|
||||
|
|
@ -18,13 +29,5 @@ BOARD_SEPOLICY_DIRS += hardware/google/pixel-sepolicy/wifi_ext
|
|||
# PowerStats HAL
|
||||
BOARD_SEPOLICY_DIRS += hardware/google/pixel-sepolicy/powerstats
|
||||
|
||||
# Display
|
||||
BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/display/common
|
||||
BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/display/gs101
|
||||
|
||||
# Micro sensor framework (usf)
|
||||
BOARD_SEPOLICY_DIRS += device/google/gs101-sepolicy/usf
|
||||
|
||||
# sscoredump
|
||||
BOARD_SEPOLICY_DIRS += hardware/google/pixel-sepolicy/sscoredump
|
||||
|
||||
|
|
|
|||
2
system_ext/private/property_contexts
Normal file
2
system_ext/private/property_contexts
Normal file
|
|
@ -0,0 +1,2 @@
|
|||
# Fingerprint (UDFPS) GHBM/LHBM toggle
|
||||
persist.fingerprint.ghbm u:object_r:fingerprint_ghbm_prop:s0 exact bool
|
||||
2
system_ext/public/property.te
Normal file
2
system_ext/public/property.te
Normal file
|
|
@ -0,0 +1,2 @@
|
|||
# Fingerprint (UDFPS) GHBM/LHBM toggle
|
||||
system_vendor_config_prop(fingerprint_ghbm_prop)
|
||||
|
|
@ -3,4 +3,5 @@ allow hal_fingerprint_default tee_device:chr_file rw_file_perms;
|
|||
allow hal_fingerprint_default sysfs_batteryinfo:file r_file_perms;
|
||||
allow hal_fingerprint_default sysfs_batteryinfo:dir search;
|
||||
allow hal_fingerprint_default self:netlink_socket create_socket_perms_no_ioctl;
|
||||
get_prop(hal_fingerprint_default, fingerprint_ghbm_prop)
|
||||
add_hwservice(hal_fingerprint_default, hal_fingerprint_ext_hwservice)
|
||||
|
|
|
|||
3
whitechapel/vendor/google/platform_app.te
vendored
3
whitechapel/vendor/google/platform_app.te
vendored
|
|
@ -9,3 +9,6 @@ allow platform_app nfc_service:service_manager find;
|
|||
|
||||
allow platform_app touch_context_service:service_manager find;
|
||||
binder_call(platform_app, twoshay)
|
||||
|
||||
# Fingerprint (UDFPS) GHBM/LHBM toggle
|
||||
get_prop(platform_app, fingerprint_ghbm_prop)
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue