diff options
author | Hsiu-Chang Chen <hsiuchangchen@google.com> | 2023-02-13 17:24:16 +0800 |
---|---|---|
committer | Hsiu-Chang Chen <hsiuchangchen@google.com> | 2023-02-15 01:47:13 +0000 |
commit | 53746d95466a594b3e3edb5eb1adc448b968253e (patch) | |
tree | 616cf29048684fb0da353b9878b9d67b7f57210e | |
parent | 5b9f54e76dd35225c2ea1cf9052667f431fa460b (diff) | |
download | lynx-sepolicy-53746d95466a594b3e3edb5eb1adc448b968253e.tar.gz |
wlan: add cnss-daemon and related libraries
cnss-daemon is necessary for CHRE function
Bug: 264524963
Test: Regression Test
Change-Id: Ic7b63617e30a9e6427b0ac280bf4763f9cc19f6e
-rw-r--r-- | vendor/cnss-daemon.te | 20 | ||||
-rw-r--r-- | vendor/file.te | 1 | ||||
-rw-r--r-- | vendor/file_contexts | 1 | ||||
-rw-r--r-- | vendor/genfs_contexts | 1 |
4 files changed, 23 insertions, 0 deletions
diff --git a/vendor/cnss-daemon.te b/vendor/cnss-daemon.te new file mode 100644 index 0000000..e6ea641 --- /dev/null +++ b/vendor/cnss-daemon.te @@ -0,0 +1,20 @@ +# cnss-daemon service +type cnss-daemon, domain; +type cnss-daemon_exec, exec_type, vendor_file_type, file_type; +init_daemon_domain(cnss-daemon) + +net_domain(cnss-daemon) + +allow cnss-daemon self:netlink_generic_socket create_socket_perms_no_ioctl; +allow cnss-daemon self:qipcrtr_socket create_socket_perms_no_ioctl; + +# /data/vendor/wifi/ +allow cnss-daemon vendor_wifi_vendor_data_file:dir create_dir_perms; +allow cnss-daemon vendor_wifi_vendor_data_file:file create_file_perms; + +# /proc/sys/net/ipv4/tcp_adv_win_scal +allow cnss-daemon proc_net:file rw_file_perms; + +# /sys/class/remoteproc +allow cnss-daemon sysfs_cnss_daemon:dir r_dir_perms; +allow cnss-daemon sysfs_cnss_daemon:file r_file_perms; diff --git a/vendor/file.te b/vendor/file.te index b70b548..7f9aa22 100644 --- a/vendor/file.te +++ b/vendor/file.te @@ -4,3 +4,4 @@ type vendor_wifi_vendor_data_file, file_type, data_file_type; type vendor_wifihal_socket, file_type; type vendor_location_sysfs, fs_type, sysfs_type; type vendor_proc_wifi_dbg, fs_type, proc_type; +type sysfs_cnss_daemon, fs_type, sysfs_type;
\ No newline at end of file diff --git a/vendor/file_contexts b/vendor/file_contexts index 1b1cd08..c224e48 100644 --- a/vendor/file_contexts +++ b/vendor/file_contexts @@ -15,6 +15,7 @@ /dev/socket/wifihal(/.*)? u:object_r:vendor_wifihal_socket:s0 /vendor/bin/loc_launcher u:object_r:vendor_location_exec:s0 /vendor/bin/lowi-server u:object_r:lowi_server_exec:s0 +/vendor/bin/cnss-daemon u:object_r:cnss-daemon_exec:s0 # Haptics /vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-private-lynx u:object_r:hal_vibrator_default_exec:s0
\ No newline at end of file diff --git a/vendor/genfs_contexts b/vendor/genfs_contexts index 8f929cb..0ee732e 100644 --- a/vendor/genfs_contexts +++ b/vendor/genfs_contexts @@ -5,6 +5,7 @@ genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u genfscon sysfs /devices/soc0/soc_id u:object_r:vendor_location_sysfs:s0 genfscon proc /debugdriver/driverdump u:object_r:vendor_proc_wifi_dbg:s0 genfscon sysfs /devices/platform/14520000.pcie/pci0001:00/0001:00:00.0/0001:01:00.0/net u:object_r:sysfs_net:s0 +genfscon sysfs /class/remoteproc u:object_r:sysfs_cnss_daemon:s0 # BMS genfscon sysfs /devices/platform/10da0000.hsi2c/i2c-6/i2c-p9222 u:object_r:sysfs_wlc:s0 |