sepolicy : Added allow rules for fm_radio and bluetooth .
fm_radio: Need access on /dev/radio node which include read write and ioctl . For enabling/disable of fmradio it need insmod persmission and set permission on property controls . bluetooth : added access to the /dev/smd and permission to do set property on bt control . Change-Id: Ie348484b42be14d96b4dcee22c9f7c6561a3bd80
This commit is contained in:
Ravi Kumar Siddojigari
committed by
Gerrit - the friendly Code Review server
Gerrit - the friendly Code Review server
parent
b80b30af19
commit
e4e0397860
@@ -37,4 +37,7 @@ BOARD_SEPOLICY_UNION := \
|
||||
sensors_test.te \
|
||||
system_app.te \
|
||||
thermal-engine.te \
|
||||
global_macros.te
|
||||
global_macros.te \
|
||||
system_app.te \
|
||||
bluetooth.te \
|
||||
init_shell.te
|
||||
|
||||
2
common/bluetooth.te
Normal file
2
common/bluetooth.te
Normal file
@@ -0,0 +1,2 @@
|
||||
#BT needes read and write on smd device node
|
||||
allow bluetooth smd_device:chr_file rw_file_perms;
|
||||
14
common/init_shell.te
Normal file
14
common/init_shell.te
Normal file
@@ -0,0 +1,14 @@
|
||||
#for accessing fmradio device node
|
||||
allow init_shell fm_radio_device:chr_file { open read ioctl };
|
||||
# for insmod of iris ko , this is needed .
|
||||
allow init_shell self:capability sys_module;
|
||||
|
||||
|
||||
#for property starting with hw
|
||||
allow init_shell system_prop:property_service set ;
|
||||
|
||||
#for access to set BT property
|
||||
allow init_shell bluetooth_prop:property_service set;
|
||||
|
||||
#most of the default properties are set by init_shell
|
||||
allow init_shell default_prop:property_service set;
|
||||
3
common/system_app.te
Normal file
3
common/system_app.te
Normal file
@@ -0,0 +1,3 @@
|
||||
# fm_radio app needes open read write on fm_radio_device
|
||||
allow system_app fm_radio_device:chr_file { read open ioctl};
|
||||
allow system_app ctl_default_prop:property_service set;
|
||||
Reference in New Issue
Block a user