sm7250-common: sepolicy: Address NFC Denials
Change-Id: I67138bb9133d12703445cf3c3010c493eecda1b0
This commit is contained in:
KakatkarAkshay
1
sepolicy/vendor/file_contexts
vendored
1
sepolicy/vendor/file_contexts
vendored
@@ -41,6 +41,7 @@
|
|||||||
/dev/mmw2_thermal u:object_r:therm_device:s0
|
/dev/mmw2_thermal u:object_r:therm_device:s0
|
||||||
/dev/opfeature u:object_r:opf_file:s0
|
/dev/opfeature u:object_r:opf_file:s0
|
||||||
/dev/param u:object_r:param_device:s0
|
/dev/param u:object_r:param_device:s0
|
||||||
|
/dev/pn553 u:object_r:nfc_device:s0
|
||||||
/dev/skin_thermal u:object_r:therm_device:s0
|
/dev/skin_thermal u:object_r:therm_device:s0
|
||||||
/dev/stmvl53l1_ranging u:object_r:vl53l1_device:s0
|
/dev/stmvl53l1_ranging u:object_r:vl53l1_device:s0
|
||||||
|
|
||||||
|
|||||||
9
sepolicy/vendor/hal_nfc_default.te
vendored
9
sepolicy/vendor/hal_nfc_default.te
vendored
@@ -1,2 +1,11 @@
|
|||||||
|
# Allow access to the HALs
|
||||||
|
hal_client_domain(hal_nfc_default, hal_secure_element)
|
||||||
|
|
||||||
|
# Allow hal_nfc_default to find hal_secure_element_hwservice
|
||||||
|
allow hal_nfc_default hal_secure_element_hwservice:hwservice_manager find;
|
||||||
|
|
||||||
allow hal_nfc_default vendor_nfc_vendor_data_file:dir create_dir_perms;
|
allow hal_nfc_default vendor_nfc_vendor_data_file:dir create_dir_perms;
|
||||||
allow hal_nfc_default vendor_nfc_vendor_data_file:file create_file_perms;
|
allow hal_nfc_default vendor_nfc_vendor_data_file:file create_file_perms;
|
||||||
|
|
||||||
|
# Allow hal_nfc_default to get vendor_nfc_prop
|
||||||
|
get_prop(hal_nfc_default, vendor_nfc_prop)
|
||||||
|
|||||||
3
sepolicy/vendor/hwservice_contexts
vendored
3
sepolicy/vendor/hwservice_contexts
vendored
@@ -1,4 +1,7 @@
|
|||||||
vendor.goodix.hardware.biometrics.fingerprint::IGoodixFingerprintDaemon u:object_r:hal_fingerprint_hwservice:s0
|
vendor.goodix.hardware.biometrics.fingerprint::IGoodixFingerprintDaemon u:object_r:hal_fingerprint_hwservice:s0
|
||||||
|
vendor.nxp.eventprocessor::INxpEseEvtProcessor u:object_r:hal_secure_element_hwservice:s0
|
||||||
|
vendor.nxp.nxpese::INxpEse u:object_r:hal_secure_element_hwservice:s0
|
||||||
|
vendor.nxp.nxpnfc::INxpNfc u:object_r:hal_nfc_hwservice:s0
|
||||||
vendor.oneplus.camera.CameraHIDL::IOnePlusCameraProvider u:object_r:hal_cameraHIDL_hwservice:s0
|
vendor.oneplus.camera.CameraHIDL::IOnePlusCameraProvider u:object_r:hal_cameraHIDL_hwservice:s0
|
||||||
vendor.oneplus.fingerprint.extension::IVendorFingerprintExtensions u:object_r:hal_fingerprint_hwservice:s0
|
vendor.oneplus.fingerprint.extension::IVendorFingerprintExtensions u:object_r:hal_fingerprint_hwservice:s0
|
||||||
vendor.oneplus.hardware.camera::IOnePlusCameraProvider u:object_r:hal_cameraHIDL_hwservice:s0
|
vendor.oneplus.hardware.camera::IOnePlusCameraProvider u:object_r:hal_cameraHIDL_hwservice:s0
|
||||||
|
|||||||
2
sepolicy/vendor/nfc.te
vendored
Normal file
2
sepolicy/vendor/nfc.te
vendored
Normal file
@@ -0,0 +1,2 @@
|
|||||||
|
# Allow nfc to get vendor_nfc_prop
|
||||||
|
get_prop(nfc, vendor_nfc_prop)
|
||||||
1
sepolicy/vendor/property_contexts
vendored
1
sepolicy/vendor/property_contexts
vendored
@@ -1,3 +1,4 @@
|
|||||||
|
persist.nfc. u:object_r:vendor_nfc_prop:s0
|
||||||
persist.vendor.bluetooth.a2dp. u:object_r:vendor_bluetooth_prop:s0
|
persist.vendor.bluetooth.a2dp. u:object_r:vendor_bluetooth_prop:s0
|
||||||
persist.vendor.bluetooth.bt.uart.log u:object_r:vendor_oem_bluetooth_prop:s0
|
persist.vendor.bluetooth.bt.uart.log u:object_r:vendor_oem_bluetooth_prop:s0
|
||||||
persist.vendor.cwb.debug u:object_r:vendor_cwb_prop:s0
|
persist.vendor.cwb.debug u:object_r:vendor_cwb_prop:s0
|
||||||
|
|||||||
Reference in New Issue
Block a user