diff options
| -rw-r--r-- | sunfish-sepolicy.mk | 1 | ||||
| -rw-r--r-- | vendor/google/bug_map | 3 | ||||
| -rw-r--r-- | vendor/google/file_contexts | 4 | ||||
| -rw-r--r-- | vendor/google/hal_usb_gadget_impl.te | 14 | ||||
| -rw-r--r-- | vendor/google/pixelstats_vendor.te | 6 |
5 files changed, 19 insertions, 9 deletions
diff --git a/sunfish-sepolicy.mk b/sunfish-sepolicy.mk index d408696..de0abea 100644 --- a/sunfish-sepolicy.mk +++ b/sunfish-sepolicy.mk @@ -13,5 +13,4 @@ BOARD_SEPOLICY_DIRS += device/google/sunfish-sepolicy/vendor/verizon SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += device/google/sunfish-sepolicy/system_ext/private # Pixel-wide sepolicy -BOARD_SEPOLICY_DIRS += hardware/google/pixel-sepolicy/wifi_sniffer BOARD_VENDOR_SEPOLICY_DIRS += hardware/google/pixel-sepolicy/powerstats diff --git a/vendor/google/bug_map b/vendor/google/bug_map index ed89df6..acb3f80 100644 --- a/vendor/google/bug_map +++ b/vendor/google/bug_map @@ -10,3 +10,6 @@ shell debugfs file b/175106535 shell device_config_runtime_native_boot_prop file b/175106535 shell sysfs file b/175106535 tee tee capability2 b/156045688 +mediaswcodec gpu_device chr_file b/194313013 +mediaswcodec sysfs_msm_subsys dir b/194313013 +mediaserver sysfs_msm_subsys dir b/194313013 diff --git a/vendor/google/file_contexts b/vendor/google/file_contexts index 6fe282f..0030286 100644 --- a/vendor/google/file_contexts +++ b/vendor/google/file_contexts @@ -12,7 +12,6 @@ # system binaries /system/bin/hw/hardware\.google\.pixelstats@1\.0-service u:object_r:pixelstats_system_exec:s0 /vendor/bin/easelmanagerd u:object_r:easel_exec:s0 -/vendor/bin/pixelstats-vendor u:object_r:pixelstats_vendor_exec:s0 /dev/battery_history u:object_r:battery_history_device:s0 # vendor binaries @@ -22,7 +21,8 @@ /vendor/bin/hw/android\.hardware\.neuralnetworks@1\.0-service-paintbox u:object_r:hal_neuralnetworks_paintbox_exec:s0 /vendor/bin/hw/android\.hardware\.neuralnetworks@1\.2-service-noronha u:object_r:hal_neuralnetworks_darwinn_exec:s0 /vendor/bin/hw/android\.hardware\.power\.stats@1\.0-service\.pixel u:object_r:hal_power_stats_default_exec:s0 -/vendor/bin/hw/android\.hardware\.usb@1\.3-service\.sunfish u:object_r:hal_usb_impl_exec:s0 +/vendor/bin/hw/android\.hardware\.usb-service\.sunfish u:object_r:hal_usb_impl_exec:s0 +/vendor/bin/hw/android\.hardware\.usb\.gadget-service\.sunfish u:object_r:hal_usb_gadget_impl_exec:s0 /vendor/bin/hw/android\.hardware\.vibrator@1\.3-service\.sunfish u:object_r:hal_vibrator_default_exec:s0 /vendor/bin/hw/hardware\.google\.light@1\.1-service u:object_r:hal_light_default_exec:s0 /vendor/bin/hw/vendor\.google\.radioext@1\.0-service u:object_r:hal_radioext_default_exec:s0 diff --git a/vendor/google/hal_usb_gadget_impl.te b/vendor/google/hal_usb_gadget_impl.te new file mode 100644 index 0000000..ddd90c2 --- /dev/null +++ b/vendor/google/hal_usb_gadget_impl.te @@ -0,0 +1,14 @@ +type hal_usb_gadget_impl, domain; +hal_server_domain(hal_usb_gadget_impl, hal_usb) +hal_server_domain(hal_usb_gadget_impl, hal_usb_gadget) + +type hal_usb_gadget_impl_exec, vendor_file_type, exec_type, file_type; +init_daemon_domain(hal_usb_gadget_impl) + +allow hal_usb_gadget_impl configfs:dir { create rmdir }; +allow hal_usb_gadget_impl functionfs:dir { watch watch_reads }; +set_prop(hal_usb_gadget_impl, vendor_usb_prop) + +allow hal_usb_gadget_impl sysfs_batteryinfo:dir r_dir_perms; +allow hal_usb_gadget_impl sysfs_batteryinfo:file rw_file_perms; +allow hal_usb_gadget_impl sysfs_extcon:dir search; diff --git a/vendor/google/pixelstats_vendor.te b/vendor/google/pixelstats_vendor.te index d8e82e6..42ce69e 100644 --- a/vendor/google/pixelstats_vendor.te +++ b/vendor/google/pixelstats_vendor.te @@ -1,9 +1,3 @@ -# pixelstats vendor -type pixelstats_vendor, domain; - -type pixelstats_vendor_exec, exec_type, vendor_file_type, file_type; -init_daemon_domain(pixelstats_vendor) - unix_socket_connect(pixelstats_vendor, chre, chre) get_prop(pixelstats_vendor, hwservicemanager_prop) |