458b60e5c9
Fix the following avc denial:
avc: denied { search } for name="17000000.aoc" dev="sysfs" ino=22035 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=dir permissive=0
avc: denied { write } for name="udfps_set_clock_source" dev="sysfs" ino=106891 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc_udfps:s0 tclass=file permissive=0
avc: denied { read } for name="udfps_get_disp_freq" dev="sysfs" ino=106893 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc_udfps:s0 tclass=file permissive=0
Bug: 267271482
Test: Verify fingerprint HAL process can read/write to the sysfs node.
Change-Id: I39a2e69b1c314d52944bb16ada61e7e6761561cf
54 lines
1.6 KiB
Text
54 lines
1.6 KiB
Text
# persist
|
|
type persist_display_file, file_type, vendor_persist_type;
|
|
type persist_battery_file, file_type, vendor_persist_type;
|
|
type persist_camera_file, file_type, vendor_persist_type;
|
|
type persist_sensor_reg_file, file_type, vendor_persist_type;
|
|
type persist_uwb_file, file_type, vendor_persist_type;
|
|
|
|
#sysfs
|
|
type sysfs_power_dump, sysfs_type, fs_type;
|
|
type sysfs_acpm_stats, sysfs_type, fs_type;
|
|
type sysfs_write_leds, sysfs_type, fs_type;
|
|
type sysfs_pca, sysfs_type, fs_type;
|
|
type sysfs_aoc_udfps, sysfs_type, fs_type;
|
|
|
|
# Trusty
|
|
type sysfs_trusty, sysfs_type, fs_type;
|
|
|
|
# mount FS
|
|
allow proc_vendor_sched proc:filesystem associate;
|
|
allow bootdevice_sysdev sysfs:filesystem associate;
|
|
|
|
# debugfs
|
|
type vendor_charger_debugfs, fs_type, debugfs_type;
|
|
type vendor_votable_debugfs, fs_type, debugfs_type;
|
|
type vendor_battery_debugfs, fs_type, debugfs_type;
|
|
type vendor_pm_genpd_debugfs, fs_type, debugfs_type;
|
|
type vendor_usb_debugfs, fs_type, debugfs_type;
|
|
type vendor_maxfg_debugfs, fs_type, debugfs_type;
|
|
|
|
# WLC
|
|
type sysfs_wlc, sysfs_type, fs_type;
|
|
|
|
# CHRE
|
|
type chre_socket, file_type;
|
|
|
|
# BT
|
|
type vendor_bt_data_file, file_type, data_file_type;
|
|
|
|
# Data
|
|
type sensor_reg_data_file, file_type, data_file_type;
|
|
type uwb_vendor_data_file, file_type, data_file_type, app_data_file_type;
|
|
type uwb_data_vendor, file_type, data_file_type;
|
|
|
|
# Vendor sched files
|
|
userdebug_or_eng(`
|
|
typeattribute proc_vendor_sched mlstrustedobject;
|
|
')
|
|
|
|
# sysfs
|
|
type sysfs_fabric, sysfs_type, fs_type;
|
|
type sysfs_em_profile, sysfs_type, fs_type;
|
|
type sysfs_ota, sysfs_type, fs_type;
|
|
type sysfs_ospm, sysfs_type, fs_type;
|
|
type sysfs_gsa_log, sysfs_type, fs_type;
|