Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Allow hal_fingerprint_default to access hal_pixel_display_service

Browse source 
Fix the following avc denial:
avc: denied  { find } for pid=1158 uid=1000 name=com.google.hardware.pixel.display.IDisplay/default scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:hal_pixel_display_service:s0 tclass=service_manager permissive=0
avc: denied { call } for scontext=u:r:hal_fingerprint_default:s0 tcontext=u:r:hal_graphics_composer_default:s0 tclass=binder permissive=0

Bug: 229716695
Bug: 224573604
Test: build and test fingerprint on device.
Change-Id: Id24e65213221048d6dfdeae6ed2bcb7b762a0f75
This commit is contained in:
Kris Chen 2022-04-20 02:35:41 +08:00 committed by KRIS CHEN
parent 615f85c22d
commit c6eea8a657
1 changed files with 4 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
whitechapel/vendor/google/hal_fingerprint_default.te vendored
View file

@ -29,3 +29,7 @@ allow hal_fingerprint_default sysfs_display:file r_file_perms;
# Allow fingerprint to access trusty sysfs # Allow fingerprint to access trusty sysfs
allow hal_fingerprint_default sysfs_trusty:file rw_file_perms; allow hal_fingerprint_default sysfs_trusty:file rw_file_perms;
# Allow fingerprint to access display hal
allow hal_fingerprint_default hal_pixel_display_service:service_manager find;
binder_call(hal_fingerprint_default, hal_graphics_composer_default)