diff options
| author | Hsiu-Chang Chen <hsiuchangchen@google.com> | 2023-02-15 10:08:06 +0000 |
|---|---|---|
| committer | Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com> | 2023-02-15 10:08:06 +0000 |
| commit | ae260626bcd37f920e4b8a0197de72ba520bbe5b (patch) | |
| tree | 2743dba89a7d140ec6b5521f8d946bb197fdc156 | |
| parent | fa9c88aef83d59b8f0eca2c0cc1142c5a4fa44d8 (diff) | |
| parent | cc2eda58a152d7460c506ddcfcfb8e7bf80726a1 (diff) | |
| download | lynx-sepolicy-ae260626bcd37f920e4b8a0197de72ba520bbe5b.tar.gz | |
wlan: add cnss-daemon and related libraries am: 53746d9546 am: cc2eda58a1
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/21257900
Change-Id: Ifa5b92a131372c681371a48bb8c6fec715a20b34
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
| -rw-r--r-- | vendor/cnss-daemon.te | 20 | ||||
| -rw-r--r-- | vendor/file.te | 1 | ||||
| -rw-r--r-- | vendor/file_contexts | 1 | ||||
| -rw-r--r-- | vendor/genfs_contexts | 1 |
4 files changed, 23 insertions, 0 deletions
diff --git a/vendor/cnss-daemon.te b/vendor/cnss-daemon.te new file mode 100644 index 0000000..e6ea641 --- /dev/null +++ b/vendor/cnss-daemon.te @@ -0,0 +1,20 @@ +# cnss-daemon service +type cnss-daemon, domain; +type cnss-daemon_exec, exec_type, vendor_file_type, file_type; +init_daemon_domain(cnss-daemon) + +net_domain(cnss-daemon) + +allow cnss-daemon self:netlink_generic_socket create_socket_perms_no_ioctl; +allow cnss-daemon self:qipcrtr_socket create_socket_perms_no_ioctl; + +# /data/vendor/wifi/ +allow cnss-daemon vendor_wifi_vendor_data_file:dir create_dir_perms; +allow cnss-daemon vendor_wifi_vendor_data_file:file create_file_perms; + +# /proc/sys/net/ipv4/tcp_adv_win_scal +allow cnss-daemon proc_net:file rw_file_perms; + +# /sys/class/remoteproc +allow cnss-daemon sysfs_cnss_daemon:dir r_dir_perms; +allow cnss-daemon sysfs_cnss_daemon:file r_file_perms; diff --git a/vendor/file.te b/vendor/file.te index b70b548..7f9aa22 100644 --- a/vendor/file.te +++ b/vendor/file.te @@ -4,3 +4,4 @@ type vendor_wifi_vendor_data_file, file_type, data_file_type; type vendor_wifihal_socket, file_type; type vendor_location_sysfs, fs_type, sysfs_type; type vendor_proc_wifi_dbg, fs_type, proc_type; +type sysfs_cnss_daemon, fs_type, sysfs_type;
\ No newline at end of file diff --git a/vendor/file_contexts b/vendor/file_contexts index 1b1cd08..c224e48 100644 --- a/vendor/file_contexts +++ b/vendor/file_contexts @@ -15,6 +15,7 @@ /dev/socket/wifihal(/.*)? u:object_r:vendor_wifihal_socket:s0 /vendor/bin/loc_launcher u:object_r:vendor_location_exec:s0 /vendor/bin/lowi-server u:object_r:lowi_server_exec:s0 +/vendor/bin/cnss-daemon u:object_r:cnss-daemon_exec:s0 # Haptics /vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-private-lynx u:object_r:hal_vibrator_default_exec:s0
\ No newline at end of file diff --git a/vendor/genfs_contexts b/vendor/genfs_contexts index 4087cc3..d85e7b7 100644 --- a/vendor/genfs_contexts +++ b/vendor/genfs_contexts @@ -5,6 +5,7 @@ genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u genfscon sysfs /devices/soc0/soc_id u:object_r:vendor_location_sysfs:s0 genfscon proc /debugdriver/driverdump u:object_r:vendor_proc_wifi_dbg:s0 genfscon sysfs /devices/platform/14520000.pcie/pci0001:00/0001:00:00.0/0001:01:00.0/net u:object_r:sysfs_net:s0 +genfscon sysfs /class/remoteproc u:object_r:sysfs_cnss_daemon:s0 # BMS genfscon sysfs /devices/platform/10da0000.hsi2c/i2c-0/i2c-p9222 u:object_r:sysfs_wlc:s0 |