diff options
author | Matthew Maurer <mmaurer@google.com> | 2019-02-21 13:58:26 -0800 |
---|---|---|
committer | Matthew Maurer <mmaurer@google.com> | 2019-03-21 15:43:16 -0700 |
commit | aa426ec0760e8605abe326910d04124c3ccefd88 (patch) | |
tree | 856151d6f451a3b5dd7313d215c0e985977baf95 /sepolicy | |
parent | 15084b78fca9ab32dfbd72b882b0b02a6dd64eb9 (diff) | |
download | trusty-aa426ec0760e8605abe326910d04124c3ccefd88.tar.gz |
Configure and launch storageproxyd
Bug: 124277696
Test: Boot with trusty, run trusty-ut-ctrl "com.android.storage-unittest.td"
Change-Id: Idc447015f222cb5a5cbcc2be2ca84c73d4045d1d
Diffstat (limited to 'sepolicy')
-rw-r--r-- | sepolicy/file_contexts | 5 | ||||
-rw-r--r-- | sepolicy/storageproxyd.te | 4 | ||||
-rw-r--r-- | sepolicy/trusty_test.te | 3 |
3 files changed, 8 insertions, 4 deletions
diff --git a/sepolicy/file_contexts b/sepolicy/file_contexts index 6e7e8c6..42e1b50 100644 --- a/sepolicy/file_contexts +++ b/sepolicy/file_contexts @@ -1,3 +1,6 @@ -/dev/trusty-ipc-dev0 u:object_r:trusty_ipc_device:s0 +/dev/trusty-ipc-dev0 u:object_r:tee_device:s0 +/dev/vport3p1 u:object_r:rpmb_virt_device:s0 /vendor/bin/dhcpclient u:object_r:dhcpclient_exec:s0 +/vendor/bin/storageproxyd u:object_r:tee_exec:s0 /data/vendor/var/run(/.*)? u:object_r:varrun_file:s0 +/data/vendor/ss(/.*)? u:object_r:tee_data_file:s0 diff --git a/sepolicy/storageproxyd.te b/sepolicy/storageproxyd.te new file mode 100644 index 0000000..578106b --- /dev/null +++ b/sepolicy/storageproxyd.te @@ -0,0 +1,4 @@ +type rpmb_virt_device, dev_type; + +allow tee rpmb_virt_device:chr_file { open read write }; +allow tee self:capability { setgid setuid }; diff --git a/sepolicy/trusty_test.te b/sepolicy/trusty_test.te deleted file mode 100644 index 08d347a..0000000 --- a/sepolicy/trusty_test.te +++ /dev/null @@ -1,3 +0,0 @@ -type trusty_ipc_device, dev_type; - -allow shell trusty_ipc_device:chr_file { open read write ioctl }; |