NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[ALPS04462320] SEPolicy:add perm for system_server

Browse Source 
For Android Q, there is a more stringent restriction for ioctl,
system_server need some permission to access proc_ged by ioctlcmd
in MTBF.

MTK-Commit-Id: 6fe037cc18f278a95a919bb3188ae50fb880a36e

Change-Id: I4f4a3b13f3ee49920ebb588ed5e7094ae0065494
CR-Id: ALPS04462320
Feature: [Module]SystemServer
This commit is contained in:
mtk07742 2020-01-18 10:12:48 +08:00
parent eb08f2a396
commit b110192c83
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
non_plat/system_server.te
View File

@ -205,4 +205,9 @@ allow system_server alarm_device:chr_file rw_file_perms;
# Date : WK19.7
# Operation: Q migration
# Purpose : Allow system_server to use ioctl/ioctlcmd
allowxperm system_server proc_ged:file ioctl GED_BRIDGE_IO_LOG_BUF_GET;
allowxperm system_server proc_ged:file ioctl {
GED_BRIDGE_IO_LOG_BUF_GET
GED_BRIDGE_IO_MONITOR_3D_FENCE
GED_BRIDGE_IO_GE_GET
GED_BRIDGE_IO_GE_SET
};