From 5f1a03bf0ee0b6fed3fe8eb5115fd4772deeb3af Mon Sep 17 00:00:00 2001 From: Roger Wang Date: Fri, 5 Nov 2021 16:02:30 +0800 Subject: [PATCH] Wifi: Add sepolicy files for hal_wifi_ext service This commit adds the sepolicy related files for hal_wifi_ext service. avc msg: avc: denied { set } for property=vendor.wlan.firmware.version pid=682 uid=1010 gid=1010 scontext=u:r:hal_wifi_ext:s0 tcontext=u:object_r:vendor_default_prop:s0 tclass=property_service permissive=1' avc: denied { call } for scontext=u:r:hal_wifi_ext:s0 tcontext=u:r:grilservice_app:s0:c143,c258,c512,c768 tclass=binder permissive=1 Bug: 205073038 Test: Check no avc_deny on hal_wifi_ext Change-Id: I5d9b59c56b723174543c0308dd6b0235e998e76c Signed-off-by: Roger Wang --- tracking_denials/hal_wifi_ext.te | 2 -- whitechapel_pro/hal_wifi_ext.te | 5 +++++ 2 files changed, 5 insertions(+), 2 deletions(-) delete mode 100644 tracking_denials/hal_wifi_ext.te create mode 100644 whitechapel_pro/hal_wifi_ext.te diff --git a/tracking_denials/hal_wifi_ext.te b/tracking_denials/hal_wifi_ext.te deleted file mode 100644 index b75c1354..00000000 --- a/tracking_denials/hal_wifi_ext.te +++ /dev/null @@ -1,2 +0,0 @@ -# b/205073038 -dontaudit hal_wifi_ext vendor_wifi_version:property_service { set }; diff --git a/whitechapel_pro/hal_wifi_ext.te b/whitechapel_pro/hal_wifi_ext.te new file mode 100644 index 00000000..659239e8 --- /dev/null +++ b/whitechapel_pro/hal_wifi_ext.te @@ -0,0 +1,5 @@ +# Allow wifi_ext to report callbacks to gril-service app +binder_call(hal_wifi_ext, grilservice_app) + +# Write wlan driver/fw version into property +set_prop(hal_wifi_ext, vendor_wifi_version)