NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[ALPS04167940] PQ : Add sepolicy for libscltm and libhdrvideo

Browse Source 
[Detail]
More strictly selinux policy that system process cannot access vendor
partition,
unless label the specific vendor lib to same_process_hal_file

[Solution]
Add same-process HAL files and their dependencies

MTK-Commit-Id: 565e78ca92a83f2aaf44bc599b91f9cb61a5bec5

Change-Id: Id5450d9ae3467b9aae8be20d3d1934e3e1f8a375
CR-Id: ALPS04167940
Feature: MiraVision
(cherry picked from commit c62b2f1b4d75034ce130d909a574aa8d6879b345)
This commit is contained in:
Shiuan Huang 2020-01-18 10:11:43 +08:00
parent 990a78584a
commit a0f777e564
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
non_plat/file_contexts
View File

@ -619,6 +619,8 @@
/vendor/lib(64)?/libpq_cust_base\.so u:object_r:same_process_hal_file:s0
/vendor/lib(64)?/vendor\.mediatek\.hardware\.pq@[0-9]\.[0-9]\.so u:object_r:same_process_hal_file:s0
/vendor/lib(64)?/libpq_prot\.so u:object_r:same_process_hal_file:s0
/vendor/lib(64)?/libhdrvideo\.so u:object_r:same_process_hal_file:s0
/vendor/lib(64)?/libscltm\.so u:object_r:same_process_hal_file:s0
/vendor/lib(64)?/vendor\.mediatek\.hardware\.gpu@1\.0.so u:object_r:same_process_hal_file:s0