Update sepolicy for streset and stpreprocess
Allow hal_secure_element_st54spi to access nfc device Allow hal_nfc_default to set se property Allow vendor_init to set nfc/se property Bug: 267838462 Test: manually trigger eSE reset without avc error Change-Id: I0ad6a0432f4fb158186874b318b5832dddce47e6
This commit is contained in:
George
parent
e338667584
commit
baa51816de
3 changed files with 10 additions and 0 deletions
3
vendor/hal_nfc_default.te
vendored
3
vendor/hal_nfc_default.te
vendored
|
|
@ -1,2 +1,5 @@
|
|||
# HAL NFC property
|
||||
get_prop(hal_nfc_default, vendor_nfc_prop)
|
||||
|
||||
# SecureElement property
|
||||
set_prop(hal_nfc_default, vendor_secure_element_prop)
|
||||
|
|
|
|||
1
vendor/hal_secure_element_st54spi.te
vendored
1
vendor/hal_secure_element_st54spi.te
vendored
|
|
@ -3,4 +3,5 @@ type hal_secure_element_st54spi_exec, exec_type, vendor_file_type, file_type;
|
|||
init_daemon_domain(hal_secure_element_st54spi)
|
||||
hal_server_domain(hal_secure_element_st54spi, hal_secure_element)
|
||||
allow hal_secure_element_st54spi st54spi_device:chr_file rw_file_perms;
|
||||
allow hal_secure_element_st54spi nfc_device:chr_file rw_file_perms;
|
||||
set_prop(hal_secure_element_st54spi, vendor_secure_element_prop)
|
||||
|
|
|
|||
6
vendor/vendor_init.te
vendored
6
vendor/vendor_init.te
vendored
|
|
@ -17,3 +17,9 @@ set_prop(vendor_init, vendor_audio_prop)
|
|||
userdebug_or_eng(`
|
||||
allow vendor_init vendor_init:lockdown { integrity };
|
||||
')
|
||||
|
||||
# NFC vendor property
|
||||
set_prop(vendor_init, vendor_nfc_prop)
|
||||
# SecureElement vendor property
|
||||
set_prop(vendor_init, vendor_secure_element_prop)
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue