diff options
| author | jge <jge@codeaurora.org> | 2016-11-17 17:38:26 +0800 |
|---|---|---|
| committer | Gerrit - the friendly Code Review server <code-review@localhost> | 2016-11-23 20:59:39 -0800 |
| commit | 2d4d643c59e0a835930c43ca802fb2dfe97cb3ea (patch) | |
| tree | 01a2dd185d5af72e6498e39fa5309be8075c6283 | |
| parent | aca10f89bfbba036d3182e81363e40c1991afdf8 (diff) | |
| download | android_device_qcom_sepolicy-2d4d643c59e0a835930c43ca802fb2dfe97cb3ea.tar.gz android_device_qcom_sepolicy-2d4d643c59e0a835930c43ca802fb2dfe97cb3ea.tar.bz2 android_device_qcom_sepolicy-2d4d643c59e0a835930c43ca802fb2dfe97cb3ea.zip | |
sepolicy: Allow wcnss_service to read /system
This is for wlan dynamic nv feature. The folder for
golden nv moves from /data/misc/wifi/nvbin to
/system/etc/wifi/nvbin, so the permission for
wcnss_service also needs change accordingly.
Change-Id: I4018e89597ae43c4fe27900a4cd71b005cb48e8d
CRs-Fixed: 1091297
| -rw-r--r-- | common/file.te | 3 | ||||
| -rw-r--r-- | common/file_contexts | 1 | ||||
| -rw-r--r-- | common/wcnss_service.te | 4 |
3 files changed, 2 insertions, 6 deletions
diff --git a/common/file.te b/common/file.te index 2d31a6d4..9417888d 100644 --- a/common/file.te +++ b/common/file.te @@ -194,9 +194,6 @@ type regionalization_file, file_type; # /data/system/swap/swapfile - swapfile type swap_data_file, file_type, data_file_type; -# dynamic nv files -type dynamic_nv_data_file, file_type, data_file_type; - # wififtmd socket file type wififtmd_socket, file_type; diff --git a/common/file_contexts b/common/file_contexts index fcbffe9e..75018c06 100644 --- a/common/file_contexts +++ b/common/file_contexts @@ -339,7 +339,6 @@ /data/misc/qti-logkit/socket-privileged(/.*)? u:object_r:qti_logkit_priv_socket:s0 /data/misc/qti-logkit/socket-public(/.*)? u:object_r:qti_logkit_pub_socket:s0 /data/system/swap(/.*)? u:object_r:swap_data_file:s0 -/data/misc/wifi/nvbin(/.*)? u:object_r:dynamic_nv_data_file:s0 /data/misc/wifi/wigig_sockets(/.*)? u:object_r:wpa_socket:s0 /data/misc/wifi/wigig_sockets/wpa_ctrl.* u:object_r:system_wpa_socket:s0 diff --git a/common/wcnss_service.te b/common/wcnss_service.te index 05b31d40..147bf8ae 100644 --- a/common/wcnss_service.te +++ b/common/wcnss_service.te @@ -41,9 +41,9 @@ allow wcnss_service fuse:dir create_dir_perms; allow wcnss_service fuse:file create_file_perms; allow wcnss_service vfat:dir create_dir_perms; allow wcnss_service vfat:file create_file_perms; + +# needed for wlan dynamic nv feature allow wcnss_service persist_file:file { rw_file_perms setattr }; -allow wcnss_service dynamic_nv_data_file:file r_file_perms; -allow wcnss_service dynamic_nv_data_file:dir r_dir_perms; # This is needed for ptt_socket app to write logs file collected to sdcard r_dir_file(wcnss_service, storage_file) |