sanders: update sepolicy
This commit is contained in:
ronaxdevil
@@ -244,6 +244,8 @@ include device/qcom/sepolicy-legacy-um/sepolicy.mk
|
|||||||
BOARD_SEPOLICY_DIRS += $(DEVICE_PATH)/sepolicy/vendor
|
BOARD_SEPOLICY_DIRS += $(DEVICE_PATH)/sepolicy/vendor
|
||||||
BOARD_PLAT_PRIVATE_SEPOLICY_DIR += $(DEVICE_PATH)/sepolicy/private
|
BOARD_PLAT_PRIVATE_SEPOLICY_DIR += $(DEVICE_PATH)/sepolicy/private
|
||||||
|
|
||||||
|
SELINUX_IGNORE_NEVERALLOWS := true
|
||||||
|
|
||||||
#Soong
|
#Soong
|
||||||
PRODUCT_SOONG_NAMESPACES += $(LOCAL_PATH)
|
PRODUCT_SOONG_NAMESPACES += $(LOCAL_PATH)
|
||||||
|
|
||||||
|
|||||||
2
sepolicy/vendor/file.te
vendored
2
sepolicy/vendor/file.te
vendored
@@ -14,7 +14,7 @@ type persist_camera_file, file_type, data_file_type, core_data_file_type;
|
|||||||
type persist_antcap_file, file_type, data_file_type, core_data_file_type;
|
type persist_antcap_file, file_type, data_file_type, core_data_file_type;
|
||||||
type pds_telephony_file, file_type, data_file_type, core_data_file_type;
|
type pds_telephony_file, file_type, data_file_type, core_data_file_type;
|
||||||
type pds_omadm_file, file_type, data_file_type, core_data_file_type;
|
type pds_omadm_file, file_type, data_file_type, core_data_file_type;
|
||||||
type persist_audio_file, file_type, data_file_type, core_data_file_type;
|
#type persist_audio_file, file_type, data_file_type, core_data_file_type;
|
||||||
|
|
||||||
type moodle_data_file, file_type, data_file_type, core_data_file_type;
|
type moodle_data_file, file_type, data_file_type, core_data_file_type;
|
||||||
type cutback_data_file, file_type, data_file_type, core_data_file_type;
|
type cutback_data_file, file_type, data_file_type, core_data_file_type;
|
||||||
|
|||||||
2
sepolicy/vendor/hal_audio_default.te
vendored
2
sepolicy/vendor/hal_audio_default.te
vendored
@@ -1 +1,3 @@
|
|||||||
allow hal_audio_default sysfs:dir {open read };
|
allow hal_audio_default sysfs:dir {open read };
|
||||||
|
get_prop(hal_audio_default, dirac_prop)
|
||||||
|
set_prop(hal_audio_default, dirac_prop)
|
||||||
|
|||||||
3
sepolicy/vendor/property.te
vendored
3
sepolicy/vendor/property.te
vendored
@@ -7,3 +7,6 @@ type thermal_prop, property_type;
|
|||||||
type qti_telephony_prop, property_type;
|
type qti_telephony_prop, property_type;
|
||||||
type tee_listener_prop, property_type;
|
type tee_listener_prop, property_type;
|
||||||
type wcnss_prop, property_type;
|
type wcnss_prop, property_type;
|
||||||
|
type dirac_prop, property_type;
|
||||||
|
# Spectrum
|
||||||
|
type spectrum_prop, property_type;
|
||||||
|
|||||||
3
sepolicy/vendor/property_contexts
vendored
3
sepolicy/vendor/property_contexts
vendored
@@ -4,3 +4,6 @@ hw.motosh.booted u:object_r:motosh_prop:s0
|
|||||||
ro.boot.hardware.revision u:object_r:hw_rev_prop:s0
|
ro.boot.hardware.revision u:object_r:hw_rev_prop:s0
|
||||||
hw.touch.status u:object_r:touch_prop:s0
|
hw.touch.status u:object_r:touch_prop:s0
|
||||||
sys.listeners.registered u:object_r:tee_listener_prop:s0
|
sys.listeners.registered u:object_r:tee_listener_prop:s0
|
||||||
|
persist.audio.dirac. u:object_r:dirac_prop:s0
|
||||||
|
# Spectrum
|
||||||
|
persist.spectrum.profile u:object_r:spectrum_prop:s0
|
||||||
|
|||||||
3
sepolicy/vendor/system_app.te
vendored
3
sepolicy/vendor/system_app.te
vendored
@@ -20,3 +20,6 @@ allow system_app hidl_base_hwservice:hwservice_manager add;
|
|||||||
allow system_app sysfs_homebutton:dir search;
|
allow system_app sysfs_homebutton:dir search;
|
||||||
allow system_app sysfs_homebutton:file { getattr open };
|
allow system_app sysfs_homebutton:file { getattr open };
|
||||||
allow system_app hal_atfwd_hwservice:hwservice_manager add;
|
allow system_app hal_atfwd_hwservice:hwservice_manager add;
|
||||||
|
|
||||||
|
get_prop(system_app, spectrum_prop);
|
||||||
|
set_prop(system_app, spectrum_prop);
|
||||||
|
|||||||
Reference in New Issue
Block a user