From 8f98a88a89939932037b73ee0f20bbfdd305b581 Mon Sep 17 00:00:00 2001
From: Ju-Yi Cheng <ju-yi.cheng@mediatek.com>
Date: Sat, 18 Jan 2020 09:51:06 +0800
Subject: [PATCH] [ALPS03869840] Add selinux for graphic debug prop

[Detail]
Relable vendor defined debug property for android P
and label the following property:
1. vendor.debug.sf
2. vendor.debug.hwc
3. vendor.debug.bq

MTK-Commit-Id: 597f4da4e53b1d45c556895e0d85bdb3c6cd80a1

Change-Id: Iaa311f9049a519bd891a45f2b2ca73a61861e353
CR-Id: ALPS03869840
Feature: [Module]SurfaceFlinger/HWComposer
---
 non_plat/hal_graphics_composer_default.te | 3 ++-
 non_plat/property.te                      | 1 +
 non_plat/property_contexts                | 7 ++++++-
 non_plat/surfaceflinger.te                | 1 +
 4 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/non_plat/hal_graphics_composer_default.te b/non_plat/hal_graphics_composer_default.te
index 88a550c..eb035db 100644
--- a/non_plat/hal_graphics_composer_default.te
+++ b/non_plat/hal_graphics_composer_default.te
@@ -44,8 +44,9 @@ binder_call(hal_graphics_composer_default, mtk_hal_power)
 # Purpose: Allow to access property
 set_prop(hal_graphics_composer_default, graphics_hwc_pid_prop)
 get_prop(hal_graphics_composer_default, graphics_hwc_pid_prop)
+get_prop(hal_graphics_composer_default, graphics_debug_prop)
 
 # Date : WK18.03
 # Purpose: Allow to access property dev/mdp_sync
 #============= hal_graphics_composer_default ==============
-allow hal_graphics_composer_default mtk_mdp_device:chr_file { read write open ioctl };
\ No newline at end of file
+allow hal_graphics_composer_default mtk_mdp_device:chr_file { read write open ioctl };
diff --git a/non_plat/property.te b/non_plat/property.te
index e48900b..f7b6837 100644
--- a/non_plat/property.te
+++ b/non_plat/property.te
@@ -146,6 +146,7 @@ type mtk_thermal_config_prop, property_type;
 
 #=============allow composer set property ============================
 type graphics_hwc_pid_prop, property_type;
+type graphics_debug_prop, property_type;
 
 #============= mtkcam property ============================
 type mtkcam_prop, property_type;
diff --git a/non_plat/property_contexts b/non_plat/property_contexts
index 8ba7e44..837a819 100644
--- a/non_plat/property_contexts
+++ b/non_plat/property_contexts
@@ -154,7 +154,12 @@ ro.vendor.md_mims_support u:object_r:mtk_telephony_sensitive_prop:s0
 #=============allow processes to change thermal config================
 vendor.thermal.manager.data u:object_r:mtk_thermal_config_prop:s0
 #=============allow composer set property ============================
-debug.sf.hwc_pid u:object_r:graphics_hwc_pid_prop:s0
+vendor.debug.sf.hwc_pid u:object_r:graphics_hwc_pid_prop:s0
+
+#=============allow graphics debug property ============================
+vendor.debug.sf. u:object_r:graphics_debug_prop:s0
+vendor.debug.hwc. u:object_r:graphics_debug_prop:s0
+vendor.debug.bq. u:object_r:graphics_debug_prop:s0
 
 #============= mtkcam property ============================
 persist.mtkcam. u:object_r:mtkcam_prop:s0
diff --git a/non_plat/surfaceflinger.te b/non_plat/surfaceflinger.te
index 4138ac7..ed32ea3 100644
--- a/non_plat/surfaceflinger.te
+++ b/non_plat/surfaceflinger.te
@@ -57,5 +57,6 @@ allow surfaceflinger proc_perfmgr:file {open read ioctl};
 # Operation : Debug
 # Purpose: Allow to dump HWC backtrace
 get_prop(surfaceflinger, graphics_hwc_pid_prop)
+get_prop(surfaceflinger, graphics_debug_prop)
 allow surfaceflinger hal_graphics_composer_default:dir search;
 allow surfaceflinger hal_graphics_composer_default:lnk_file read;