diff options
author | Jing-yan, Jang <josephjang@google.com> | 2020-06-18 06:47:02 +0000 |
---|---|---|
committer | Android (Google) Code Review <android-gerrit@google.com> | 2020-06-18 06:47:02 +0000 |
commit | c65168ba8fc78548c421b7502bab94c4659f3c60 (patch) | |
tree | a3be7cdb4d3ee7291d67ca54f18c87502cf0e130 | |
parent | 801900ed7251b609e2cbbe59bed7175856d8f3f5 (diff) | |
parent | 2f734e6f1ec6e3d2fd773adc8d5bc1ca496c4b4c (diff) | |
download | coral-sepolicy-c65168ba8fc78548c421b7502bab94c4659f3c60.tar.gz |
Merge "Add mDL oem hal sepolicy for coral." into rvc-dev
-rw-r--r-- | vendor/google/file_contexts | 1 | ||||
-rw-r--r-- | vendor/google/hal_identity_citadel.te | 9 |
2 files changed, 10 insertions, 0 deletions
diff --git a/vendor/google/file_contexts b/vendor/google/file_contexts index ba72269..4fd4689 100644 --- a/vendor/google/file_contexts +++ b/vendor/google/file_contexts @@ -33,6 +33,7 @@ /vendor/bin/hw/android\.hardware\.camera\.provider@2\.6-service-google u:object_r:hal_camera_default_exec:s0 /vendor/bin/hw/android\.hardware\.contexthub@1\.1-service\.generic u:object_r:hal_contexthub_default_exec:s0 /vendor/bin/hw/android\.hardware\.keymaster@4\.1-service\.citadel u:object_r:hal_keymaster_citadel_exec:s0 +/vendor/bin/hw/android\.hardware\.identity@1\.0-service\.citadel u:object_r:hal_identity_citadel_exec:s0 /vendor/bin/hw/android\.hardware\.neuralnetworks@1\.2-service-noronha u:object_r:hal_neuralnetworks_darwinn_exec:s0 /vendor/bin/hw/android\.hardware\.power\.stats@1\.0-service\.pixel u:object_r:hal_power_stats_default_exec:s0 /vendor/bin/hw/android\.hardware\.rebootescrow-service\.citadel u:object_r:hal_rebootescrow_citadel_exec:s0 diff --git a/vendor/google/hal_identity_citadel.te b/vendor/google/hal_identity_citadel.te new file mode 100644 index 0000000..e29310c --- /dev/null +++ b/vendor/google/hal_identity_citadel.te @@ -0,0 +1,9 @@ +type hal_identity_citadel, domain; +type hal_identity_citadel_exec, exec_type, vendor_file_type, file_type; + +vndbinder_use(hal_identity_citadel) +binder_call(hal_identity_citadel, citadeld) +allow hal_identity_citadel citadeld_service:service_manager find; + +hal_server_domain(hal_identity_citadel, hal_identity) +init_daemon_domain(hal_identity_citadel) |