5f82c9e661
[Detail] Android P add new limitation for property access between system partition and vendor partition: 1. SET and GET only by system 2. System cannot SET the property which SET/GET by vendor. 3. Allow system and vendor GET the property which SET by vendor. [Solution] 1. Add new property label mtk_cxp_vendor_prop 2. Modify CXP related SELinux setting MTK-Commit-Id: 4cac600ed76d413b5aee7ee64a1d6af55aa499d1 Change-Id: I9498840dead36a536acd5d18470f57bf7aec0a7c CR-Id: ALPS03873734 Feature: Regional Carrier Express Pack
38 lines
1.4 KiB
Plaintext
38 lines
1.4 KiB
Plaintext
allow vendor_init exported3_system_prop:property_service set;
|
|
allow vendor_init dalvik_prop:property_service set;
|
|
|
|
allow vendor_init ffs_prop:property_service set;
|
|
allow vendor_init mediatek_prop:property_service set;
|
|
allow vendor_init mtk_md_version_prop:property_service set;
|
|
allow vendor_init mtk_volte_prop:property_service set;
|
|
allow vendor_init vendor_radio_prop:property_service set;
|
|
allow vendor_init mtk_ril_mode_prop:property_service set;
|
|
allow vendor_init wmt_prop:property_service set;
|
|
|
|
allow vendor_init proc:file write;
|
|
allow vendor_init proc_bootprof:file write;
|
|
allow vendor_init rootfs:dir { write add_name setattr };
|
|
allow vendor_init self:capability sys_module;
|
|
|
|
allow vendor_init tmpfs:dir { write create add_name };
|
|
allow vendor_init unlabeled:dir { relabelfrom getattr setattr search };
|
|
allow vendor_init vendor_file:system module_load;
|
|
|
|
allow vendor_init kmsg_device:chr_file unlink;
|
|
set_prop(vendor_init, persist_mtk_aee_prop)
|
|
set_prop(vendor_init, ro_mtk_aee_prop)
|
|
set_prop(vendor_init, vendor_usb_prop)
|
|
set_prop(vendor_init, mtk_ct_volte_prop)
|
|
set_prop(vendor_init, mtk_gps_support_prop)
|
|
set_prop(vendor_init, mtk_rat_config_prop)
|
|
set_prop(vendor_init, mtk_aal_ro_prop)
|
|
set_prop(vendor_init, mtk_pq_ro_prop)
|
|
set_prop(vendor_init, mtk_default_prop)
|
|
|
|
set_prop(vendor_init, mtk_emmc_support_prop)
|
|
|
|
# allow create symbolic link, /mnt/sdcard, for meta/factory mode
|
|
allow vendor_init tmpfs:lnk_file create;
|
|
|
|
set_prop(vendor_init, mtk_cxp_vendor_prop)
|