Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

sepolicy: declare hal_vendor_radio_external_service

Browse source 
Enable AIDL for V requirement

AVC log in b/281968564#comment208 and go/v-ril-hal-migration

Bug: 281968564
Test: telephony function test
Flag: EXEMPT HAL interface change

Change-Id: Id523192adf8ab2d60f1778b97274f5357d06707c
Signed-off-by: Sungwoo choi <sungwoo48.choi@samsung.com>
This commit is contained in:
Sungwoo choi 2024-04-24 15:16:21 +09:00 committed by Tim Lin
parent d44695709c
commit 8dd51f11ad
11 changed files with 24 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
legacy/zuma/vendor/hal_secure_element_uicc.te vendored
View file

@ -10,3 +10,5 @@ crash_dump_fallback(hal_secure_element_uicc)
# Allow hal_secure_element_uicc to access rild # Allow hal_secure_element_uicc to access rild
binder_call(hal_secure_element_uicc, rild); binder_call(hal_secure_element_uicc, rild);
allow hal_secure_element_uicc hal_exynos_rild_hwservice:hwservice_manager find; allow hal_secure_element_uicc hal_exynos_rild_hwservice:hwservice_manager find;
allow hal_secure_element_uicc hal_vendor_radio_external_service:service_manager find;
binder_call(hal_secure_element_uicc, servicemanager)

2
radio/bipchmgr.te
View file

@ -7,3 +7,5 @@ get_prop(bipchmgr, hwservicemanager_prop);
allow bipchmgr hal_exynos_rild_hwservice:hwservice_manager find; allow bipchmgr hal_exynos_rild_hwservice:hwservice_manager find;
hwbinder_use(bipchmgr) hwbinder_use(bipchmgr)
binder_call(bipchmgr, rild) binder_call(bipchmgr, rild)
allow bipchmgr hal_vendor_radio_external_service:service_manager find;
binder_call(bipchmgr, servicemanager)

3
radio/oemrilservice_app.te
View file

@ -7,3 +7,6 @@ allow oemrilservice_app radio_service:service_manager find;
binder_call(oemrilservice_app, rild) binder_call(oemrilservice_app, rild)
set_prop(oemrilservice_app, vendor_rild_prop) set_prop(oemrilservice_app, vendor_rild_prop)
allow oemrilservice_app hal_vendor_radio_external_service:service_manager find;
binder_call(oemrilservice_app, servicemanager)

2
radio/radio.te
View file

@ -7,3 +7,5 @@ allow radio radio_vendor_data_file:file create_file_perms;
allow radio vendor_ims_app:udp_socket { getattr read write setopt shutdown }; allow radio vendor_ims_app:udp_socket { getattr read write setopt shutdown };
allow radio aoc_device:chr_file rw_file_perms; allow radio aoc_device:chr_file rw_file_perms;
allow radio scheduling_policy_service:service_manager find; allow radio scheduling_policy_service:service_manager find;
allow radio hal_vendor_radio_external_service:service_manager find;
binder_call(radio, servicemanager)

1
radio/rild.te
View file

@ -37,6 +37,7 @@ crash_dump_fallback(rild)
# for hal service # for hal service
add_hwservice(rild, hal_exynos_rild_hwservice) add_hwservice(rild, hal_exynos_rild_hwservice)
add_service(rild, hal_vendor_radio_external_service)
# Allow rild to access files on modem img. # Allow rild to access files on modem img.
allow rild modem_img_file:dir r_dir_perms; allow rild modem_img_file:dir r_dir_perms;

3
radio/service.te
View file

@ -1,2 +1,3 @@
# Define liboemservice_proxy_service. # Define liboemservice_proxy_service.
type liboemservice_proxy_service, hal_service_type, service_manager_type; type liboemservice_proxy_service, hal_service_type, service_manager_type;
type hal_vendor_radio_external_service, hal_service_type, protected_service, service_manager_type;

3
radio/service_contexts
View file

@ -1,2 +1,3 @@
# DMD oemservice aidl proxy. # DMD oemservice aidl proxy.
com.google.pixel.modem.logmasklibrary.ILiboemserviceProxy/default u:object_r:liboemservice_proxy_service:s0 com.google.pixel.modem.logmasklibrary.ILiboemserviceProxy/default u:object_r:liboemservice_proxy_service:s0
vendor.samsung_slsi.telephony.hardware.radioExternal.IOemSlsiRadioExternal/default u:object_r:hal_vendor_radio_external_service:s0

2
radio/vendor_engineermode_app.te
View file

@ -5,6 +5,8 @@ binder_call(vendor_engineermode_app, rild)
allow vendor_engineermode_app app_api_service:service_manager find; allow vendor_engineermode_app app_api_service:service_manager find;
allow vendor_engineermode_app hal_exynos_rild_hwservice:hwservice_manager find; allow vendor_engineermode_app hal_exynos_rild_hwservice:hwservice_manager find;
allow vendor_engineermode_app hal_vendor_radio_external_service:service_manager find;
binder_call(vendor_engineermode_app, servicemanager)
userdebug_or_eng(` userdebug_or_eng(`
dontaudit vendor_engineermode_app default_prop:file r_file_perms; dontaudit vendor_engineermode_app default_prop:file r_file_perms;

2
radio/vendor_ims_app.te
View file

@ -21,3 +21,5 @@ get_prop(vendor_ims_app, vendor_imssvc_prop)
userdebug_or_eng(` userdebug_or_eng(`
get_prop(vendor_ims_app, vendor_ims_tiss_prop) get_prop(vendor_ims_app, vendor_ims_tiss_prop)
') ')
allow vendor_ims_app hal_vendor_radio_external_service:service_manager find;
binder_call(vendor_ims_app, servicemanager)

4
radio/vendor_satellite_service.te
View file

@ -3,4 +3,6 @@ type vendor_satellite_service, domain;
app_domain(vendor_satellite_service); app_domain(vendor_satellite_service);
allow vendor_satellite_service app_api_service:service_manager find; allow vendor_satellite_service app_api_service:service_manager find;
allow vendor_satellite_service hal_exynos_rild_hwservice:hwservice_manager find; allow vendor_satellite_service hal_exynos_rild_hwservice:hwservice_manager find;
binder_call(vendor_satellite_service, rild) binder_call(vendor_satellite_service, rild)
allow vendor_satellite_service hal_vendor_radio_external_service:service_manager find;
binder_call(vendor_satellite_service, servicemanager)

3
radio/vendor_telephony_debug_app.te
View file

@ -9,6 +9,9 @@ binder_call(vendor_telephony_debug_app, rild)
# RIL property # RIL property
set_prop(vendor_telephony_debug_app, vendor_rild_prop) set_prop(vendor_telephony_debug_app, vendor_rild_prop)
allow vendor_telephony_debug_app hal_vendor_radio_external_service:service_manager find;
binder_call(vendor_telephony_debug_app, servicemanager)
# Debug property # Debug property
set_prop(vendor_telephony_debug_app, vendor_telephony_app_prop) set_prop(vendor_telephony_debug_app, vendor_telephony_app_prop)