sm7250-common: sepolicy: address new denials
This commit is contained in:
parent
e09ea00803
commit
afcc03d440
4
sepolicy/vendor/hal_wifi_default.te
vendored
Normal file
4
sepolicy/vendor/hal_wifi_default.te
vendored
Normal file
@ -0,0 +1,4 @@
|
||||
allow hal_wifi_default self:capability sys_module;
|
||||
|
||||
|
||||
allow hal_wifi_default persist_vendor_debug_wifi_prop:file { read };
|
2
sepolicy/vendor/hdvcp.te
vendored
2
sepolicy/vendor/hdvcp.te
vendored
@ -1,2 +1,2 @@
|
||||
allow vendor_hvdcp sysfs:file { getattr read };
|
||||
allow vendor_hvdcp sysfs:file { getattr read open write};
|
||||
allow vendor_hvdcp kmsg_device:chr_file rw_file_perms;
|
2
sepolicy/vendor/system_server.te
vendored
2
sepolicy/vendor/system_server.te
vendored
@ -1,5 +1,7 @@
|
||||
allow system_server proc_last_kmsg:file r_file_perms;
|
||||
|
||||
allow system_server sysfs:file { read };
|
||||
|
||||
allow system_server vendor_sysfs_battery_supply:file { getattr open read };
|
||||
allow system_server system_server:capability { sys_module };
|
||||
allow system_server vendor_proc_shs:dir search;
|
||||
|
4
sepolicy/vendor/vendor_hal_capabilityconfigstore_qti_default.te
vendored
Normal file
4
sepolicy/vendor/vendor_hal_capabilityconfigstore_qti_default.te
vendored
Normal file
@ -0,0 +1,4 @@
|
||||
|
||||
|
||||
# Allow vendor_hal_capabilityconfigstore_qti_default to read, open, map and get attributes in vendor_cap_configstore_dbg_prop
|
||||
allow vendor_hal_capabilityconfigstore_qti_default vendor_cap_configstore_dbg_prop:file { getattr map open read };
|
1
sepolicy/vendor/vendor_hal_usb_qti.te
vendored
Normal file
1
sepolicy/vendor/vendor_hal_usb_qti.te
vendored
Normal file
@ -0,0 +1 @@
|
||||
allow vendor_hal_usb_qti vendor_default_prop:property_service { set };
|
3
sepolicy/vendor/vendor_qti_init_shell.te
vendored
3
sepolicy/vendor/vendor_qti_init_shell.te
vendored
@ -8,4 +8,5 @@ allow vendor_qti_init_shell vendor_bluetooth_prop:property_service set;
|
||||
allow vendor_qti_init_shell vendor_wifi_vendor_data_file:dir search;
|
||||
allow vendor_qti_init_shell vendor_wifi_vendor_data_file:file r_file_perms;
|
||||
|
||||
allow vendor_qti_init_shell sysfs_wakeup:file setattr;
|
||||
allow vendor_qti_init_shell sysfs_wakeup:file setattr;
|
||||
allow vendor_qti_init_shell proc_watermark_scale_factor:file w_file_perms;
|
@ -1,3 +1,4 @@
|
||||
allow vendor_qtidataservices_app unlabeled:file { read };
|
||||
|
||||
get_prop(vendor_qtidataservices_app, vendor_default_prop)
|
||||
get_prop(vendor_qtidataservices_app, vendor_default_prop)
|
||||
get_prop(vendor_qtidataservices_app, default_prop)
|
Loading…
Reference in New Issue
Block a user