diff options
| author | Huaiming Li <huaiming.li@mediatek.com> | 2020-02-14 10:44:55 +0800 |
|---|---|---|
| committer | Huaiming Li <huaiming.li@mediatek.com> | 2020-02-14 13:47:37 +0800 |
| commit | 34eed3239d489a65d7fa7617288ce3752bffc63f (patch) | |
| tree | 510d36259a3650a3ef2ee23aafcb21c10734232d | |
| parent | 4e4ba53b7464c36092ab0ab51ae2e7072529ec58 (diff) | |
| download | device_mediatek_wembley-sepolicy-34eed3239d489a65d7fa7617288ce3752bffc63f.tar.gz device_mediatek_wembley-sepolicy-34eed3239d489a65d7fa7617288ce3752bffc63f.tar.bz2 device_mediatek_wembley-sepolicy-34eed3239d489a65d7fa7617288ce3752bffc63f.zip | |
[ALPS04975618] add aee_aedv proc file selinux rule
1. allow aee_aedv to read or write proc file
Change-Id: Ic16afcc2080d91a22de2440a2eb12838f71e7b9b
CR-Id: ALPS04975618
Feature: Android Exception Engine(AEE)
| -rw-r--r-- | non_plat/aee_aedv.te | 2 | ||||
| -rw-r--r-- | non_plat/file.te | 2 | ||||
| -rw-r--r-- | non_plat/genfs_contexts | 2 | ||||
| -rw-r--r-- | r_non_plat/aee_aedv.te | 2 | ||||
| -rw-r--r-- | r_non_plat/file.te | 2 | ||||
| -rw-r--r-- | r_non_plat/genfs_contexts | 2 |
6 files changed, 12 insertions, 0 deletions
diff --git a/non_plat/aee_aedv.te b/non_plat/aee_aedv.te index 1231a55..e5d7aad 100644 --- a/non_plat/aee_aedv.te +++ b/non_plat/aee_aedv.te @@ -435,3 +435,5 @@ allow aee_aedv proc_aed_reboot_reason:file r_file_perms; # Purpose: Allow aee_aedv to write /proc/sys/vm/drop_caches allow aee_aedv proc_drop_caches:file rw_file_perms; + +allow aee_aedv proc_wmt_aee:file r_file_perms; diff --git a/non_plat/file.te b/non_plat/file.te index 5c12bb3..dd2a1ab 100644 --- a/non_plat/file.te +++ b/non_plat/file.te @@ -442,3 +442,5 @@ type sysfs_chipid, fs_type, sysfs_type; # Date : 2019/12/12 # Purpose : allow media sources to access /sys/bus/platform/drivers/mem_bw_ctrl/* type sysfs_concurrency_scenario, fs_type, sysfs_type; + +type proc_wmt_aee, fs_type, proc_type; diff --git a/non_plat/genfs_contexts b/non_plat/genfs_contexts index 393d9de..1c8c027 100644 --- a/non_plat/genfs_contexts +++ b/non_plat/genfs_contexts @@ -64,6 +64,8 @@ genfscon proc /isp_p2 u:object_r:proc_isp_p2:s0 # Purpose: Android Migration for SVP genfscon proc /m4u u:object_r:proc_m4u:s0 +genfscon proc /driver/wmt_aee u:object_r:proc_wmt_aee:s0 + ############################# # sysfs files diff --git a/r_non_plat/aee_aedv.te b/r_non_plat/aee_aedv.te index 7a13c5a..53b07eb 100644 --- a/r_non_plat/aee_aedv.te +++ b/r_non_plat/aee_aedv.te @@ -429,3 +429,5 @@ allow aee_aedv proc_dbg_repo:file r_file_perms; # Purpose: Allow aee_aedv to read /proc/pl_lk allow aee_aedv proc_pl_lk:file r_file_perms; + +allow aee_aedv proc_wmt_aee:file r_file_perms; diff --git a/r_non_plat/file.te b/r_non_plat/file.te index d43727c..721b5ed 100644 --- a/r_non_plat/file.te +++ b/r_non_plat/file.te @@ -414,3 +414,5 @@ type sysfs_mrdump_lbaooo, fs_type, sysfs_type; # Date : 2019/12/12 # Purpose : allow media sources to access /sys/bus/platform/drivers/mem_bw_ctrl/* type sysfs_concurrency_scenario, fs_type, sysfs_type; + +type proc_wmt_aee, fs_type, proc_type; diff --git a/r_non_plat/genfs_contexts b/r_non_plat/genfs_contexts index 93aa96e..114b7e2 100644 --- a/r_non_plat/genfs_contexts +++ b/r_non_plat/genfs_contexts @@ -64,6 +64,8 @@ genfscon proc /isp_p2 u:object_r:proc_isp_p2:s0 # Purpose: Android Migration for SVP genfscon proc /m4u u:object_r:proc_m4u:s0 +genfscon proc /driver/wmt_aee u:object_r:proc_wmt_aee:s0 + ############################# # sysfs files |