Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add fastboot sepolicy changes to allow wiping of device

Browse source 
With new AIDL fastboot service, wiping permissions need to be added
for hal_fastboot_default.

Bug: 260140380
Test: fastboot -w

Change-Id: I08e98461d0697d7539e14435acdacc3cc64eab3d
Signed-off-by: Sandeep Dhavale <dhavale@google.com>
This commit is contained in:
Sandeep Dhavale 2022-11-24 04:16:33 +00:00
parent 25ea0f418a
commit 89f5fff668
1 changed files with 7 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

8
whitechapel_pro/hal_fastboot_default.te
View file

@ -15,4 +15,10 @@ allow hal_fastboot_default sysfs_leds:dir search;
allow hal_fastboot_default sysfs_leds:file rw_file_perms;
allow hal_fastboot_default sysfs_leds:lnk_file read;
allow hal_fastboot_default citadel_device:chr_file getattr;
#for fastboot -w (wiping device)
allow hal_fastboot_default citadel_device:chr_file { rw_file_perms };
allow hal_fastboot_default proc_bootconfig:file { rw_file_perms };
allow hal_fastboot_default proc_cmdline:file { rw_file_perms };
allow hal_fastboot_default st54spi_device:chr_file { rw_file_perms };
allow hal_fastboot_default metadata_block_device:blk_file { rw_file_perms };
allowxperm hal_fastboot_default metadata_block_device:blk_file ioctl { BLKSECDISCARD BLKDISCARD };