NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
android_device_mediatek_sep.../non_plat/mtk_hal_keyinstall.te
Aayush Gupta 6cf2f424af non_plat: Label and grant required permissions to keinstall hidl/service 
Signed-off-by: Aayush Gupta <aayushgupta219@gmail.com>
Change-Id: I482e9dd6b42ad62553d1451269eb7ef6c3c3fc3b
2021-01-25 14:22:06 +05:30

18 lines
770 B
Plaintext
Raw Permalink Blame History

type mtk_hal_keyinstall_exec, exec_type, file_type, vendor_file_type;
type mtk_hal_keyinstall, domain;
hal_server_domain(mtk_hal_keyinstall, hal_keymaster)
init_daemon_domain(mtk_hal_keyinstall)
add_hwservice(hal_keymaster_server, mtk_hal_keyinstall_hwservice)
allow hal_keymaster_client mtk_hal_keyinstall_hwservice:hwservice_manager find;
allow mtk_hal_keyinstall persist_data_file:dir { search write add_name };
allow mtk_hal_keyinstall persist_data_file:file { read write create open setattr getattr };
allow mtk_hal_keyinstall key_install_data_file:dir { write add_name remove_name search };
allow mtk_hal_keyinstall key_install_data_file:file { write create setattr read getattr unlink open append };
allow mtk_hal_keyinstall debugfs_tracing:file { write };
Reference in New Issue View Git Blame Copy Permalink