Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update sepolicy for ConnectivityMonitor

Browse source 
Bug: 307468771
Test: v2/pixel-health-guard/device-boot-health-check-extra
Change-Id: I08caf6a8e48118151df72ad883490551af0c464c
This commit is contained in:
Allen Xu 2024-01-05 22:59:42 +00:00
parent aaaf45379c
commit 1e31efbc3a
2 changed files with 8 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

14
tracking_denials/con_monitor_app.te
View file

@ -1,14 +0,0 @@
# b/307468771
userdebug_or_eng(`
permissive con_monitor_app;
')# b/308381432
dontaudit con_monitor_app activity_service:service_manager { find };
dontaudit con_monitor_app content_capture_service:service_manager { find };
dontaudit con_monitor_app game_service:service_manager { find };
dontaudit con_monitor_app netstats_service:service_manager { find };
# b/309732305
dontaudit con_monitor_app batterystats_service:service_manager { find };
dontaudit con_monitor_app init:unix_stream_socket { connectto };
dontaudit con_monitor_app property_socket:sock_file { write };
dontaudit con_monitor_app radio_prop:property_service { set };
dontaudit con_monitor_app virtual_device_service:service_manager { find };

8
vendor/con_monitor_app.te vendored
View file

@ -1,3 +1,11 @@
# ConnectivityMonitor app
type con_monitor_app, domain;
app_domain(con_monitor_app);
allow con_monitor_app app_api_service:service_manager find;
allow con_monitor_app batterystats_service:service_manager find;
allow con_monitor_app virtual_device_service:service_manager find;
binder_call(con_monitor_app, servicemanager);
set_prop(con_monitor_app, radio_prop);