xpeng: Commonize sepolicy
Change-Id: Idbc4e5f655fd19cc4754aab99d8bb236a73f9a12
This commit is contained in:
Marc Bourgoin
parent
3990edbe31
commit
0b7fd0697a
7 changed files with 0 additions and 38 deletions
|
|
@ -45,8 +45,5 @@ TARGET_RECOVERY_UI_MARGIN_HEIGHT := 90
|
||||||
# Security
|
# Security
|
||||||
VENDOR_SECURITY_PATCH := 2023-03-01
|
VENDOR_SECURITY_PATCH := 2023-03-01
|
||||||
|
|
||||||
# SELinux
|
|
||||||
BOARD_SEPOLICY_DIRS += $(DEVICE_PATH)/sepolicy/vendor
|
|
||||||
|
|
||||||
# inherit from the proprietary version
|
# inherit from the proprietary version
|
||||||
include vendor/motorola/xpeng/BoardConfigVendor.mk
|
include vendor/motorola/xpeng/BoardConfigVendor.mk
|
||||||
|
|
|
||||||
14
sepolicy/vendor/file_contexts
vendored
14
sepolicy/vendor/file_contexts
vendored
|
|
@ -1,14 +0,0 @@
|
||||||
# HAL Services
|
|
||||||
/(vendor|system/vendor)/bin/hw/android\.hardware\.lights-service\.xpeng u:object_r:hal_light_default_exec:s0
|
|
||||||
/(vendor|system/vendor)/bin/hw/android\.hardware\.light@2\.0-service\.xpeng u:object_r:hal_light_default_exec:s0
|
|
||||||
/(vendor|system/vendor)/bin/init\.oem\.(fingerprint2|fingerprint\.overlay)\.sh u:object_r:vendor_init_fingerprint_exec:s0
|
|
||||||
/(vendor|system/vendor)/bin/hw/egis_ident u:object_r:hal_fingerprint_default_exec:s0
|
|
||||||
/(vendor|system/vendor)/bin/hw/fpc_ident u:object_r:hal_fingerprint_default_exec:s0
|
|
||||||
/(vendor|system/vendor)/bin/hw/goodix_ident u:object_r:hal_fingerprint_default_exec:s0
|
|
||||||
|
|
||||||
# Fingerprint
|
|
||||||
/(mnt/vendor)/persist/egis(/.*)? u:object_r:fingerprint_vendor_data_file:s0
|
|
||||||
/sys/devices/soc/0.et320(/.*)? u:object_r:vendor_sysfs_fingerprint:s0
|
|
||||||
|
|
||||||
# Vendor init scripts
|
|
||||||
/(vendor|system/vendor)/bin/load_touch\.sh u:object_r:vendor_qti_init_shell_exec:s0
|
|
||||||
7
sepolicy/vendor/genfs_contexts
vendored
7
sepolicy/vendor/genfs_contexts
vendored
|
|
@ -1,7 +0,0 @@
|
||||||
# Fingerprint
|
|
||||||
genfscon sysfs /devices/platform/egis_input u:object_r:vendor_sysfs_fingerprint:s0
|
|
||||||
genfscon sysfs /devices/platform/egis_input/navigation_enable u:object_r:vendor_sysfs_fingerprint:s0
|
|
||||||
genfscon sysfs /devices/platform/egis_input/navigation_event u:object_r:vendor_sysfs_fingerprint:s0
|
|
||||||
|
|
||||||
# Lights
|
|
||||||
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-05/c440000.qcom,spmi:qcom,pm8150l@5:qcom,leds@d000/leds/charging u:object_r:sysfs_leds:s0
|
|
||||||
2
sepolicy/vendor/hal_fingerprint_default.te
vendored
2
sepolicy/vendor/hal_fingerprint_default.te
vendored
|
|
@ -1,2 +0,0 @@
|
||||||
allow hal_fingerprint_default vendor_sysfs_fingerprint:dir search;
|
|
||||||
allow hal_fingerprint_default vendor_sysfs_fingerprint:file { getattr open write };
|
|
||||||
5
sepolicy/vendor/hal_light_default.te
vendored
5
sepolicy/vendor/hal_light_default.te
vendored
|
|
@ -1,5 +0,0 @@
|
||||||
allow hal_light_default {
|
|
||||||
sysfs_leds
|
|
||||||
}:file rw_file_perms;
|
|
||||||
|
|
||||||
r_dir_file(hal_light_default, sysfs_leds)
|
|
||||||
2
sepolicy/vendor/hwservice_contexts
vendored
2
sepolicy/vendor/hwservice_contexts
vendored
|
|
@ -1,2 +0,0 @@
|
||||||
# Fingerprint
|
|
||||||
vendor.egistec.hardware.fingerprint::IBiometricsFingerprintEts u:object_r:hal_fingerprint_hwservice:s0
|
|
||||||
5
sepolicy/vendor/vendor_init_fingerprint.te
vendored
5
sepolicy/vendor/vendor_init_fingerprint.te
vendored
|
|
@ -1,5 +0,0 @@
|
||||||
# Write to /dev/kmsg
|
|
||||||
allow vendor_init_fingerprint kmsg_device:chr_file rw_file_perms;
|
|
||||||
|
|
||||||
allow vendor_init_fingerprint kernel:key search;
|
|
||||||
allow vendor_init_fingerprint mnt_vendor_file:file { getattr open read };
|
|
||||||
Loading…
Reference in a new issue