pe-devices/device_xiaomi_miatoll
1
0
Fork 0
mirror of https://github.com/PixelExperience-Devices/device_xiaomi_miatoll.git synced 2025-05-04 21:27:16 +09:00
Code Issues Projects Releases Wiki Activity

sm6250-common: sepolicy: Label fingerprint props as restricted vendor

Browse Source 
* System only reads them, but never sets them
* Rename to vendor_fingerprint_prop while at it

Change-Id: Id980731ec53338c5c5a07b81f10a283c428d17aa
This commit is contained in:
Sebastiano Barezzi 2022-06-26 22:21:46 +02:00 committed by Alexander Winkowski
parent e4cf86cbb5
commit b45758328a
No known key found for this signature in database
GPG Key ID: 72762A66704CDE44
4 changed files with 8 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
sepolicy/vendor/app.te vendored
View File

@ -2,5 +2,5 @@ allow { appdomain -isolated_app } adsprpcd_file:dir r_dir_perms;
allow { appdomain -isolated_app } public_adsprpcd_file:file r_file_perms; allow { appdomain -isolated_app } public_adsprpcd_file:file r_file_perms;
allow { appdomain -isolated_app } vendor_xdsp_device:chr_file r_file_perms; allow { appdomain -isolated_app } vendor_xdsp_device:chr_file r_file_perms;
get_prop({ appdomain -isolated_app }, vendor_fp_prop) get_prop({ appdomain -isolated_app }, vendor_fingerprint_prop)
get_prop({ appdomain -isolated_app }, vendor_tee_listener_prop) get_prop({ appdomain -isolated_app }, vendor_tee_listener_prop)

4
sepolicy/vendor/hal_fingerprint_default.te vendored
View File

@ -27,9 +27,9 @@ allow hal_fingerprint_default {
r_dir_file(hal_fingerprint_default, firmware_file) r_dir_file(hal_fingerprint_default, firmware_file)
get_prop(system_server, vendor_fp_prop); get_prop(system_server, vendor_fingerprint_prop);
set_prop(hal_fingerprint_default, vendor_fp_prop) set_prop(hal_fingerprint_default, vendor_fingerprint_prop)
allow hal_fingerprint_default vendor_sysfs_spss:dir { search }; allow hal_fingerprint_default vendor_sysfs_spss:dir { search };
allow hal_fingerprint_default vendor_sysfs_spss:file { open read }; allow hal_fingerprint_default vendor_sysfs_spss:file { open read };

2
sepolicy/vendor/property.te vendored
View File

@ -2,4 +2,4 @@ vendor_internal_prop(vendor_power_prop)
vendor_internal_prop(vendor_thermal_prop) vendor_internal_prop(vendor_thermal_prop)
vendor_public_prop(vendor_fp_prop) vendor_restricted_prop(vendor_fingerprint_prop);

8
sepolicy/vendor/property_contexts vendored
View File

@ -4,10 +4,10 @@ vendor.camera. u:object_r:vendor_camera_prop:s0
persist.camera. u:object_r:vendor_camera_prop:s0 persist.camera. u:object_r:vendor_camera_prop:s0
# Fingerprint # Fingerprint
persist.vendor.sys.fp. u:object_r:vendor_fp_prop:s0 persist.vendor.sys.fp. u:object_r:vendor_fingerprint_prop:s0
ro.hardware.fp u:object_r:vendor_fp_prop:s0 ro.hardware.fp u:object_r:vendor_fingerprint_prop:s0
vendor.fps_hal. u:object_r:vendor_fp_prop:s0 vendor.fps_hal. u:object_r:vendor_fingerprint_prop:s0
vendor.sys.fp u:object_r:vendor_fp_prop:s0 vendor.sys.fp u:object_r:vendor_fingerprint_prop:s0
# Power # Power
vendor.powerhal.state u:object_r:vendor_power_prop:s0 vendor.powerhal.state u:object_r:vendor_power_prop:s0