sepolicy: Add rules for QCV init rc and sh scripts
- Add rules to allow execution of init.qti.qcv.sh - Allow init.qti.qcv.sh to set_prop vendor_soc_name_prop - Allow init.qti.qcv.rc to read vendor_soc_name_prop Change-Id: I4f548bf0ab424dceba1d5b72c1ec8a596a037431
This commit is contained in:
Roopesh Nataraja
1
generic/vendor/common/file_contexts
vendored
1
generic/vendor/common/file_contexts
vendored
@@ -490,6 +490,7 @@
|
||||
/(vendor|system/vendor)/bin/qca6234-service.sh u:object_r:vendor_qti_init_shell_exec:s0
|
||||
/(vendor|system/vendor)/bin/init\.qti\.kernel\.sh u:object_r:vendor_qti_init_shell_exec:s0
|
||||
/(vendor|system/vendor)/bin/init\.kernel\.post_boot\.sh u:object_r:vendor_qti_init_shell_exec:s0
|
||||
/(vendor|system/vendor)/bin/init\.qti\.qcv\.sh u:object_r:vendor_qti_init_shell_exec:s0
|
||||
|
||||
#Limits sysfs node
|
||||
/sys/module/msm_isense_cdsp/data u:object_r:sysfs_thermal:s0
|
||||
|
||||
6
generic/vendor/common/init_shell.te
vendored
6
generic/vendor/common/init_shell.te
vendored
@@ -176,8 +176,10 @@ allow vendor_qti_init_shell proc_meminfo:file r_file_perms;
|
||||
|
||||
allow vendor_qti_init_shell vendor_sysfs_suspend:file w_file_perms;
|
||||
|
||||
# Set ro.vendor.qti.soc to soc_id in init early boot script
|
||||
set_prop(vendor_qti_init_shell, vendor_soc_prop)
|
||||
# Set ro.vendor.qti.soc to soc_id in QCV init script
|
||||
set_prop(vendor_qti_init_shell, vendor_soc_prop);
|
||||
# Set ro.vendor.qti.soc.name to soc_name in QCV init script
|
||||
set_prop(vendor_qti_init_shell, vendor_soc_name_prop);
|
||||
|
||||
# Get persist.console.silent.config for kernel console log level
|
||||
get_prop(vendor_qti_init_shell, vendor_console_log_level_prop)
|
||||
|
||||
5
generic/vendor/common/property.te
vendored
5
generic/vendor/common/property.te
vendored
@@ -103,8 +103,9 @@ vendor_restricted_prop(vendor_adsprpc_prop);
|
||||
# Wifi version recorder
|
||||
vendor_internal_prop(vendor_wifi_version);
|
||||
|
||||
# Property for storing soc_id
|
||||
vendor_internal_prop(vendor_soc_prop)
|
||||
# QCV properties for storing soc_id and soc_name
|
||||
vendor_internal_prop(vendor_soc_prop);
|
||||
vendor_internal_prop(vendor_soc_name_prop);
|
||||
|
||||
#kernel console log level
|
||||
vendor_internal_prop(vendor_console_log_level_prop)
|
||||
|
||||
5
generic/vendor/common/property_contexts
vendored
5
generic/vendor/common/property_contexts
vendored
@@ -128,8 +128,9 @@ vendor.display.qdcm_socket_service u:object_r:vendor_qdcmss_prop:s0
|
||||
#vendor-adsprpc
|
||||
vendor.fastrpc. u:object_r:vendor_adsprpc_prop:s0
|
||||
|
||||
# Property for storing soc_id
|
||||
ro.vendor.qti.soc u:object_r:vendor_soc_prop:s0
|
||||
# QCV properties for storing soc_id and soc_name
|
||||
ro.vendor.qti.soc u:object_r:vendor_soc_prop:s0
|
||||
ro.vendor.qti.soc.name u:object_r:vendor_soc_name_prop:s0
|
||||
|
||||
#kernel console log level
|
||||
persist.console.silent.config u:object_r:vendor_console_log_level_prop:s0
|
||||
|
||||
3
generic/vendor/common/vendor_init.te
vendored
3
generic/vendor/common/vendor_init.te
vendored
@@ -94,3 +94,6 @@ set_prop(vendor_init, vendor_bluetooth_prop)
|
||||
userdebug_or_eng(`
|
||||
allow vendor_init proc_security:file rw_file_perms;
|
||||
')
|
||||
|
||||
# Allow vendor_init to read vendor_soc_name_prop
|
||||
get_prop(vendor_init, vendor_soc_name_prop);
|
||||
|
||||
Reference in New Issue
Block a user