psmattas/hardware_oplus-CherishOS
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-09-03. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
182d42df95eb7d9c054e50f30d724f22032e762a
hardware_oplus-CherishOS/sepolicy/qti/vendor/kernel.te
AnierinB cc3c3cbf70 sepolicy: qti: Allow kernel to read vendor_file 
There are two ways for the kernel to load iris5.fw. The first way is
via fw_get_filesystem_firmware(), which read iris5.fw directly from the
filesystem using filp_read(). The second way gets FW via ueventd, which
calls request_firmware().

Because the kernel unconditionally calls fw_get_filesystem_firmware()
for iris5, the first way always gets executed. However, the current
sepolicy denies read access to iris5.fw for the kernel, causing this way
to never work. The second way is used only on ioctl(), which would
likely be sent from HWC. Unlike the first way, the second way *does*
work as-is, and since HWC is always started when booting into Android,
we don't have to worry about the first way being broken.

However, HWC doesn't run offline charging mode, so we have to rely on
the first way for that case. Unfortunately, since the first way is
broken, offline charging fails to work properly as a result. As such, we
need to fix that denial to make the first way work again.

Change-Id: Iba43afc5dba1c64d8ced9f374bbf9f0457db3c92
2022-11-21 22:39:29 +00:00

2 lines
44 B
Plaintext
Raw Blame History

allow kernel vendor_file:file r_file_perms;
Reference in New Issue View Git Blame Copy Permalink