Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

storage: update sepolicy for storage suez

Browse source 
Bug: 206741894
Bug: 188793183
Test: boot to home
Signed-off-by: Randall Huang <huangrandall@google.com>
Change-Id: I206178e34156f0b02c4a5b743ac9467e7dafb74f
This commit is contained in:
Randall Huang 2021-11-19 16:31:09 +08:00
parent f317331d7a
commit a578c846fa
7 changed files with 16 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

4
tracking_denials/hal_health_default.te
View file

@ -3,7 +3,3 @@ dontaudit hal_health_default sysfs:file { getattr };
dontaudit hal_health_default sysfs:file { open };
dontaudit hal_health_default sysfs:file { read };
dontaudit hal_health_default sysfs:file { write };
dontaudit hal_health_default sysfs_scsi_devices_0000:dir { search };
dontaudit hal_health_default sysfs_scsi_devices_0000:file { getattr };
dontaudit hal_health_default sysfs_scsi_devices_0000:file { open };
dontaudit hal_health_default sysfs_scsi_devices_0000:file { read };

5
tracking_denials/hal_power_default.te
View file

@ -1,11 +1,6 @@
# b/207062564
dontaudit hal_power_default sysfs:file { open };
dontaudit hal_power_default sysfs:file { write };
dontaudit hal_power_default sysfs_fs_f2fs:dir { search };
dontaudit hal_power_default sysfs_fs_f2fs:file { open };
dontaudit hal_power_default sysfs_fs_f2fs:file { write };
dontaudit hal_power_default sysfs_scsi_devices_0000:file { open };
dontaudit hal_power_default sysfs_scsi_devices_0000:file { write };
dontaudit hal_power_default sysfs_vendor_sched:dir { search };
dontaudit hal_power_default sysfs_vendor_sched:file { open };
dontaudit hal_power_default sysfs_vendor_sched:file { write };

4
whitechapel_pro/hal_health_default.te
View file

@ -2,3 +2,7 @@ allow hal_health_default mnt_vendor_file:dir search;
allow hal_health_default persist_file:dir search;
set_prop(hal_health_default, vendor_battery_defender_prop)
# Access to /sys/devices/platform/14700000.ufs/*
allow hal_health_default sysfs_scsi_devices_0000:dir r_dir_perms;
allow hal_health_default sysfs_scsi_devices_0000:file rw_file_perms;

4
whitechapel_pro/hal_power_default.te Normal file
View file

@ -0,0 +1,4 @@
allow hal_power_default sysfs_scsi_devices_0000:file rw_file_perms;
allow hal_power_default sysfs_fs_f2fs:dir r_dir_perms;
allow hal_power_default sysfs_fs_f2fs:file rw_file_perms;

2
whitechapel_pro/hal_power_stats_default.te Normal file
View file

@ -0,0 +1,2 @@
allow hal_power_stats_default sysfs_scsi_devices_0000:dir r_dir_perms;
allow hal_power_stats_default sysfs_scsi_devices_0000:file r_file_perms;

4
whitechapel_pro/hardware_info_app.te
View file

@ -2,3 +2,7 @@ type hardware_info_app, domain;
app_domain(hardware_info_app)
allow hardware_info_app app_api_service:service_manager find;
# Storage
allow hardware_info_app sysfs_scsi_devices_0000:dir search;
allow hardware_info_app sysfs_scsi_devices_0000:file r_file_perms;

2
whitechapel_pro/pixelstats_vendor.te
View file

@ -1 +1,3 @@
binder_use(pixelstats_vendor)
allow pixelstats_vendor sysfs_scsi_devices_0000:file rw_file_perms;