Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Enforce vendor_init and allow tee and display access

Browse source 
Fix: 307468733
Fix: 308381748
Fix: 312372803
Test: make selinux_policy
Change-Id: Ic9c987e34bf8337e9a743371a00fd910442fab10
This commit is contained in:
Wilson Sung 2023-12-18 04:30:35 +00:00
parent 7d98399d40
commit 3d57d2da26
2 changed files with 2 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

8
tracking_denials/vendor_init.te
View file

@ -1,8 +0,0 @@
# b/307468733
userdebug_or_eng(`
permissive vendor_init;
')# b/308381748
dontaudit vendor_init debugfs_trace_marker:file { getattr };
dontaudit vendor_init default_prop:property_service { set };
# b/312372803
dontaudit vendor_init tee_data_file:lnk_file { read };

3
vendor/vendor_init.te vendored
View file

@ -1,3 +1,4 @@
# USB property
set_prop(vendor_init, vendor_usb_config_prop)
set_prop(vendor_init, vendor_display_prop)
allow vendor_init tee_data_file:lnk_file read;