Allow twoshay → systemui_app binder call for zuma devices (2)

Splitting system_app (b/264266705) caused the avc denial below,
causing b/269981541. This change allows the denied binder call
and fixes the bug.

Denial message:
avc: denied { call } for scontext=u:r:twoshay:s0 tcontext=u:r:systemui_app:s0:c230,c256,c512,c768 tclass=binder permissive=0

Note: this is a re-submit of ag/21529713, after sorting out the
SEPolicy issues described in b/270444888.

Test: flash P23 and Bluejay devices with this change plus ag/21591673,
  run `adb shell device_config put twoshay_native test_flag_name test_flag_value`,
  → TouchContextService.java logs corresponding property changed message.

Bug: 270444888

Change-Id: I40d70cf19930eb334ba3250d58a0cbc39b50764b

This commit is contained in:

Cody Heiner

2023-02-24 15:18:07 -08:00

parent 546b787a40

commit dc0b4fc9e9

1 changed files with 2 additions and 0 deletions

2

vendor/twoshay.te vendored Normal file

View file

 @ -0,0 +1,2 @@
 # Allow ITouchContextService callback
 binder_call(twoshay, systemui_app)

Rows
Columns

Allow twoshay → systemui_app binder call for zuma devices (2)

2 vendor/twoshay.te vendored Normal file Unescape Escape View file

2

vendor/twoshay.te vendored Normal file

View file