Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fix SELinux error for com.google.android.euicc am: f265749f1d

Browse source 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/22874711

Change-Id: I3d72968e6cf50c8db5a61269f52c2e7ed57888c1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Jinyoung Jeong 2023-04-30 03:19:13 +00:00 committed by Automerger Merge Worker
commit 13cb55bee1
7 changed files with 59 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

8
private/property.te Normal file
View file

@ -0,0 +1,8 @@
product_restricted_prop(masterclear_esim_prop)
product_restricted_prop(euicc_seamless_transfer_prop)
neverallow { domain -init } masterclear_esim_prop:property_service set;
neverallow { domain -init } euicc_seamless_transfer_prop:property_service set;
get_prop(appdomain, masterclear_esim_prop)
get_prop(appdomain, euicc_seamless_transfer_prop)

4
private/property_contexts
View file

@ -3,3 +3,7 @@ persist.bootanim.color1 u:object_r:bootanim_system_prop:s0 exact int
persist.bootanim.color2 u:object_r:bootanim_system_prop:s0 exact int persist.bootanim.color2 u:object_r:bootanim_system_prop:s0 exact int
persist.bootanim.color3 u:object_r:bootanim_system_prop:s0 exact int persist.bootanim.color3 u:object_r:bootanim_system_prop:s0 exact int
persist.bootanim.color4 u:object_r:bootanim_system_prop:s0 exact int persist.bootanim.color4 u:object_r:bootanim_system_prop:s0 exact int
#eSIM
masterclear.allow_retain_esim_profiles_after_fdr u:object_r:masterclear_esim_prop:s0 exact bool
euicc.seamless_transfer_enabled_in_non_qs u:object_r:euicc_seamless_transfer_prop:s0 exact bool

23
whitechapel_pro/certs/EuiccGoogle.x509.pem Normal file
View file

@ -0,0 +1,23 @@
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

15
whitechapel_pro/euicc_app.te Normal file
View file

@ -0,0 +1,15 @@
type euicc_app, domain;
app_domain(euicc_app)
allow euicc_app activity_service:service_manager find;
allow euicc_app radio_service:service_manager find;
allow euicc_app content_capture_service:service_manager find;
allow euicc_app virtual_device_service:service_manager find;
allow euicc_app game_service:service_manager find;
allow euicc_app netstats_service:service_manager find;
allow euicc_app registry_service:service_manager find;
get_prop(euicc_app, setupwizard_esim_prop)
get_prop(euicc_app, bootloader_prop)
get_prop(euicc_app, exported_default_prop)
get_prop(euicc_app, vendor_modem_prop)

3
whitechapel_pro/keys.conf
View file

@ -15,3 +15,6 @@ ALL : device/google/gs201-sepolicy/whitechapel_pro/certs/camera_eng.x509.pem
[@CAMERAFISHFOOD] [@CAMERAFISHFOOD]
ALL : device/google/gs201-sepolicy/whitechapel_pro/certs/camera_fishfood.x509.pem ALL : device/google/gs201-sepolicy/whitechapel_pro/certs/camera_fishfood.x509.pem
[@EUICCGOOGLE]
ALL : device/google/gs201-sepolicy/whitechapel_pro/certs/EuiccGoogle.x509.pem

3
whitechapel_pro/mac_permissions.xml
View file

@ -39,4 +39,7 @@
<signer signature="@CAMERAFISHFOOD" > <signer signature="@CAMERAFISHFOOD" >
<seinfo value="CameraFishfood" /> <seinfo value="CameraFishfood" />
</signer> </signer>
<signer signature="@EUICCGOOGLE" >
<seinfo value="EuiccGoogle" />
</signer>
</policy> </policy>

3
whitechapel_pro/seapp_contexts
View file

@ -49,6 +49,9 @@ user=_app isPrivApp=true seinfo=uwb name=com.qorvo.uwb.vendorservice domain=uwb_
# Domain for EuiccSupportPixel # Domain for EuiccSupportPixel
user=_app isPrivApp=true seinfo=EuiccSupportPixel name=com.google.euiccpixel domain=euiccpixel_app type=app_data_file levelFrom=all user=_app isPrivApp=true seinfo=EuiccSupportPixel name=com.google.euiccpixel domain=euiccpixel_app type=app_data_file levelFrom=all
# Domain for EuiccGoogle
user=_app isPrivApp=true seinfo=EuiccGoogle name=com.google.android.euicc domain=euicc_app type=app_data_file levelFrom=all
# Sub System Ramdump # Sub System Ramdump
user=system seinfo=platform name=com.google.SSRestartDetector domain=ssr_detector_app type=system_app_data_file levelFrom=user user=system seinfo=platform name=com.google.SSRestartDetector domain=ssr_detector_app type=system_app_data_file levelFrom=user