diff options
author | Android Build Coastguard Worker <android-build-coastguard-worker@google.com> | 2022-05-17 21:05:44 +0000 |
---|---|---|
committer | Android Build Coastguard Worker <android-build-coastguard-worker@google.com> | 2022-05-17 21:05:44 +0000 |
commit | 747558b1ac052f88db325696e9d59ab22d5c3a83 (patch) | |
tree | e62b6917835c1ef424007411e2daa7164e6d9861 | |
parent | 3c4a711afff888482fd42166e46c560928c0c8f5 (diff) | |
parent | 6fc2e84360f8353a8a5085e4f5a8a91b581bb41b (diff) | |
download | pixel-sepolicy-747558b1ac052f88db325696e9d59ab22d5c3a83.tar.gz |
Snap for 8589293 from 6fc2e84360f8353a8a5085e4f5a8a91b581bb41b to sc-v2-platform-releaseandroid-platform-12.1.0_r9android-platform-12.1.0_r8android-platform-12.1.0_r7android-platform-12.1.0_r6android-platform-12.1.0_r5android-platform-12.1.0_r4android-platform-12.1.0_r28android-platform-12.1.0_r27android-platform-12.1.0_r26android-platform-12.1.0_r25android-platform-12.1.0_r24android-platform-12.1.0_r23android-platform-12.1.0_r22android-platform-12.1.0_r21android-platform-12.1.0_r20android-platform-12.1.0_r19android-platform-12.1.0_r18android-platform-12.1.0_r17android-platform-12.1.0_r16android-platform-12.1.0_r15android-platform-12.1.0_r14android-platform-12.1.0_r13android-platform-12.1.0_r12android-platform-12.1.0_r11android-platform-12.1.0_r10android12L-platform-release
Change-Id: I9dbfa85c9e80887dd086eedcb67f6841d0f60a93
5 files changed, 34 insertions, 0 deletions
diff --git a/fingerprint-extension/system_ext/private/file_contexts b/fingerprint-extension/system_ext/private/file_contexts new file mode 100644 index 0000000..e66f969 --- /dev/null +++ b/fingerprint-extension/system_ext/private/file_contexts @@ -0,0 +1 @@ +/system_ext/bin/fingerprint\.extension\.sh u:object_r:init-fingerprint-extension_exec:s0 diff --git a/fingerprint-extension/system_ext/private/init-fingerprint-extension.te b/fingerprint-extension/system_ext/private/init-fingerprint-extension.te new file mode 100644 index 0000000..86730fe --- /dev/null +++ b/fingerprint-extension/system_ext/private/init-fingerprint-extension.te @@ -0,0 +1,17 @@ +type init-fingerprint-extension, domain, coredomain; +type init-fingerprint-extension_exec, exec_type, system_file_type, file_type; + +userdebug_or_eng(` + init_daemon_domain(init-fingerprint-extension) + + allow init-fingerprint-extension shell_exec:file rx_file_perms; + allow init-fingerprint-extension system_file:file execute_no_trans; + allow init-fingerprint-extension toolbox_exec:file {execute read open execute_no_trans map getattr}; + allow init-fingerprint-extension activity_service:service_manager find; + binder_call(init-fingerprint-extension, servicemanager) + binder_call(init-fingerprint-extension, system_server) + binder_call(system_server, init-fingerprint-extension) + + set_prop(init-fingerprint-extension, pixel_fingerprint_prop) + get_prop(init-fingerprint-extension, pixel_fingerprint_prop) +') diff --git a/fingerprint-extension/system_ext/private/property_contexts b/fingerprint-extension/system_ext/private/property_contexts new file mode 100644 index 0000000..f171122 --- /dev/null +++ b/fingerprint-extension/system_ext/private/property_contexts @@ -0,0 +1,11 @@ +# Latency +ctl.start$fingerprint-extension-bug-latency u:object_r:pixel_fingerprint_prop:s0 +ctl.stop$fingerprint-extension-bug-latency u:object_r:pixel_fingerprint_prop:s0 + +# Lockout +ctl.start$fingerprint-extension-bug-lockout u:object_r:pixel_fingerprint_prop:s0 +ctl.stop$fingerprint-extension-bug-lockout u:object_r:pixel_fingerprint_prop:s0 + +# Authentication +ctl.start$fingerprint-extension-bug-auth u:object_r:pixel_fingerprint_prop:s0 +ctl.stop$fingerprint-extension-bug-auth u:object_r:pixel_fingerprint_prop:s0 diff --git a/fingerprint-extension/system_ext/public/property.te b/fingerprint-extension/system_ext/public/property.te new file mode 100644 index 0000000..f0e2dd9 --- /dev/null +++ b/fingerprint-extension/system_ext/public/property.te @@ -0,0 +1 @@ +system_public_prop(pixel_fingerprint_prop) diff --git a/fingerprint-extension/vendor/hal_fingerprint_default.te b/fingerprint-extension/vendor/hal_fingerprint_default.te new file mode 100644 index 0000000..c1d5e4d --- /dev/null +++ b/fingerprint-extension/vendor/hal_fingerprint_default.te @@ -0,0 +1,4 @@ +userdebug_or_eng(` + set_prop(hal_fingerprint_default, pixel_fingerprint_prop) +') + |