Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "sepolicy allow fingerprint hal to read mfg_data" into sc-dev

Browse source
This commit is contained in:
Andrew LeCain 2021-07-19 17:46:18 +00:00 committed by Android (Google) Code Review
commit ff13d1adee
4 changed files with 7 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
whitechapel/vendor/google/device.te vendored
View file

@ -6,6 +6,7 @@ type modem_userdata_block_device, dev_type;
type persist_block_device, dev_type;
type vendor_block_device, dev_type;
type sda_block_device, dev_type;
type mfg_data_block_device, dev_type;
# Exynos devices
type vendor_m2m1shot_device, dev_type;

1
whitechapel/vendor/google/file_contexts vendored
View file

@ -73,6 +73,7 @@
/dev/block/platform/14700000\.ufs/by-name/vbmeta_[ab] u:object_r:custom_ab_block_device:s0
/dev/block/platform/14700000\.ufs/by-name/vbmeta_system_[ab] u:object_r:custom_ab_block_device:s0
/dev/block/platform/14700000\.ufs/by-name/vendor_boot_[ab] u:object_r:custom_ab_block_device:s0
/dev/block/platform/14700000\.ufs/by-name/mfg_data u:object_r:mfg_data_block_device:s0
/dev/block/sda u:object_r:sda_block_device:s0
/dev/sys/block/bootdevice(/.*)? u:object_r:bootdevice_sysdev:s0

4
whitechapel/vendor/google/hal_fingerprint_default.te vendored
View file

@ -18,3 +18,7 @@ hal_client_domain(hal_fingerprint_default, hal_power);
# Allow access to the files of CDT information.
r_dir_file(hal_fingerprint_default, sysfs_chosen)
# Allow fingerprint to access calibration blk device.
allow hal_fingerprint_default mfg_data_block_device:blk_file { rw_file_perms };
allow hal_fingerprint_default block_device:dir search;

1
whitechapel/vendor/google/vendor_init.te vendored
View file

@ -16,6 +16,7 @@ set_prop(vendor_init, vendor_logger_prop)
allow vendor_init proc_dirty:file w_file_perms;
allow vendor_init proc_sched:file write;
allow vendor_init bootdevice_sysdev:file create_file_perms;
allow vendor_init block_device:lnk_file setattr;
userdebug_or_eng(`
set_prop(vendor_init, logpersistd_logging_prop)