diff options
| author | Bart Van Assche <bvanassche@google.com> | 2021-08-13 11:38:47 -0700 |
|---|---|---|
| committer | Bart Van Assche <bvanassche@google.com> | 2021-08-13 11:38:58 -0700 |
| commit | aace3214639d6226f075b8cbe6b2e72be95745b0 (patch) | |
| tree | 53687de9b3d93ddf01d85a845bac45f7d05f04b8 /vendor | |
| parent | e0f2ae7e1ee79c9b4eae68813badddb3cc2a7aa5 (diff) | |
| download | sunfish-sepolicy-aace3214639d6226f075b8cbe6b2e72be95745b0.tar.gz | |
Add the 'bdev_type' attribute to all block devices
The following patch iterates over all block devices:
https://android-review.googlesource.com/c/platform/system/core/+/1783847/9
The following patch grants 'init' and 'apexd' permission to iterate over
all block devices:
https://android-review.googlesource.com/c/platform/system/sepolicy/+/1783947
The above SELinux policy change requires to add the 'bdev_type'
attribute to all block devices. Hence this patch.
Bug: 194450129
Test: Untested.
Change-Id: I40776e26f4300859485759b440575d12d779b5a9
Signed-off-by: Bart Van Assche <bvanassche@google.com>
Diffstat (limited to 'vendor')
| -rw-r--r-- | vendor/google/device.te | 2 | ||||
| -rw-r--r-- | vendor/qcom/common/device.te | 18 |
2 files changed, 10 insertions, 10 deletions
diff --git a/vendor/google/device.te b/vendor/google/device.te index db58020..380f10a 100644 --- a/vendor/google/device.te +++ b/vendor/google/device.te @@ -3,6 +3,6 @@ type ipu_device, dev_type, mlstrustedobject; type ramoops_device, dev_type; type maxfg_device, dev_type; type pwrstats_device, dev_type; -type dp_block_device, dev_type; +type dp_block_device, dev_type, bdev_type; type qg_device, dev_type; type battery_history_device, dev_type; diff --git a/vendor/qcom/common/device.te b/vendor/qcom/common/device.te index 211d3d4..04fe462 100644 --- a/vendor/qcom/common/device.te +++ b/vendor/qcom/common/device.te @@ -19,7 +19,7 @@ type rpmb_device, dev_type; type sg_device, dev_type; type dip_device, dev_type; type sd_device, dev_type; -type ssd_block_device, dev_type; +type ssd_block_device, dev_type, bdev_type; type esoc_device, dev_type; type ssr_device, dev_type; type ramdump_device, dev_type; @@ -50,12 +50,12 @@ type avtimer_device, dev_type; type at_device, dev_type; type bt_device, dev_type; type wlan_device, dev_type; -type rawdump_block_device, dev_type; -type custom_ab_block_device, dev_type; -type xbl_block_device, dev_type; -type gpt_block_device, dev_type; -type modem_block_device, dev_type; -type uefi_block_device, dev_type; -type persist_block_device, dev_type; +type rawdump_block_device, dev_type, bdev_type; +type custom_ab_block_device, dev_type, bdev_type; +type xbl_block_device, dev_type, bdev_type; +type gpt_block_device, dev_type, bdev_type; +type modem_block_device, dev_type, bdev_type; +type uefi_block_device, dev_type, bdev_type; +type persist_block_device, dev_type, bdev_type; type npu_device, dev_type; -type devinfo_block_device, dev_type; +type devinfo_block_device, dev_type, bdev_type; |