Loading sepolicy/device.te +3 −0 Original line number Diff line number Diff line Loading @@ -40,6 +40,9 @@ type madev0_device, dev_type; # IR type irtx_device, dev_type; # Trustzone type tkcore_device, dev_type; # Block devices type proinfo_device, dev_type; type nvram_device, dev_type; Loading sepolicy/file.te +1 −0 Original line number Diff line number Diff line Loading @@ -9,6 +9,7 @@ type mnld_data_file, file_type, data_file_type; type ccci_cfg_file, file_type, data_file_type; type logmisc_data_file, file_type, data_file_type; type thermal_manager_data_file, file_type, data_file_type; type tkcore_data_file, file_type, data_file_type; type sysfs_gps_file, fs_type, sysfs_type; type sysfs_ccci, fs_type, sysfs_type; Loading sepolicy/file_contexts +4 −0 Original line number Diff line number Diff line Loading @@ -30,6 +30,7 @@ /(system|system\/vendor|vendor)/bin/etsd u:object_r:etsd_exec:s0 /(system|system\/vendor|vendor)/bin/ged_srv u:object_r:ged_srv_exec:s0 /(system|system\/vendor|vendor)/bin/spm_loader u:object_r:spm_loader_exec:s0 /(system|system\/vendor|vendor)/bin/teed u:object_r:tkcore_exec:s0 # exfat & ntfs /system/bin/mkfs\.exfat u:object_r:mkfs_exec:s0 Loading Loading @@ -93,6 +94,7 @@ /dev/esfp0 u:object_r:esfp0_device:s0 /dev/madev0 u:object_r:madev0_device:s0 /dev/irtx u:object_r:irtx_device:s0 /dev/tkcoredrv u:object_r:tkcore_device:s0 # Sockets /dev/socket/rild[2-4] u:object_r:rild_socket:s0 Loading Loading @@ -163,3 +165,5 @@ /data/ccci_cfg(/.*)? u:object_r:ccci_cfg_file:s0 /data/.tp(/.*)? u:object_r:thermal_manager_data_file:s0 /data/nfc_socket(/.*)? u:object_r:nfc_socket:s0 /data/tee(/.*)? u:object_r:tkcore_data_file:s0 /data/teec.log u:object_r:tkcore_data_file:s0 sepolicy/gatekeeperd.te 0 → 100644 +2 −0 Original line number Diff line number Diff line # Trustzone allow gatekeeperd tkcore_device:chr_file rw_file_perms; sepolicy/hal_fingerprint_default.te +3 −0 Original line number Diff line number Diff line Loading @@ -3,3 +3,6 @@ allow hal_fingerprint_default etsd:binder { call transfer }; allow hal_fingerprint_default etsd_service:service_manager find; allow hal_fingerprint_default esfp0_device:chr_file rw_file_perms; allow hal_fingerprint_default madev0_device:chr_file rw_file_perms; # Trustzone allow hal_fingerprint_default tkcore_device:chr_file rw_file_perms; Loading
sepolicy/device.te +3 −0 Original line number Diff line number Diff line Loading @@ -40,6 +40,9 @@ type madev0_device, dev_type; # IR type irtx_device, dev_type; # Trustzone type tkcore_device, dev_type; # Block devices type proinfo_device, dev_type; type nvram_device, dev_type; Loading
sepolicy/file.te +1 −0 Original line number Diff line number Diff line Loading @@ -9,6 +9,7 @@ type mnld_data_file, file_type, data_file_type; type ccci_cfg_file, file_type, data_file_type; type logmisc_data_file, file_type, data_file_type; type thermal_manager_data_file, file_type, data_file_type; type tkcore_data_file, file_type, data_file_type; type sysfs_gps_file, fs_type, sysfs_type; type sysfs_ccci, fs_type, sysfs_type; Loading
sepolicy/file_contexts +4 −0 Original line number Diff line number Diff line Loading @@ -30,6 +30,7 @@ /(system|system\/vendor|vendor)/bin/etsd u:object_r:etsd_exec:s0 /(system|system\/vendor|vendor)/bin/ged_srv u:object_r:ged_srv_exec:s0 /(system|system\/vendor|vendor)/bin/spm_loader u:object_r:spm_loader_exec:s0 /(system|system\/vendor|vendor)/bin/teed u:object_r:tkcore_exec:s0 # exfat & ntfs /system/bin/mkfs\.exfat u:object_r:mkfs_exec:s0 Loading Loading @@ -93,6 +94,7 @@ /dev/esfp0 u:object_r:esfp0_device:s0 /dev/madev0 u:object_r:madev0_device:s0 /dev/irtx u:object_r:irtx_device:s0 /dev/tkcoredrv u:object_r:tkcore_device:s0 # Sockets /dev/socket/rild[2-4] u:object_r:rild_socket:s0 Loading Loading @@ -163,3 +165,5 @@ /data/ccci_cfg(/.*)? u:object_r:ccci_cfg_file:s0 /data/.tp(/.*)? u:object_r:thermal_manager_data_file:s0 /data/nfc_socket(/.*)? u:object_r:nfc_socket:s0 /data/tee(/.*)? u:object_r:tkcore_data_file:s0 /data/teec.log u:object_r:tkcore_data_file:s0
sepolicy/gatekeeperd.te 0 → 100644 +2 −0 Original line number Diff line number Diff line # Trustzone allow gatekeeperd tkcore_device:chr_file rw_file_perms;
sepolicy/hal_fingerprint_default.te +3 −0 Original line number Diff line number Diff line Loading @@ -3,3 +3,6 @@ allow hal_fingerprint_default etsd:binder { call transfer }; allow hal_fingerprint_default etsd_service:service_manager find; allow hal_fingerprint_default esfp0_device:chr_file rw_file_perms; allow hal_fingerprint_default madev0_device:chr_file rw_file_perms; # Trustzone allow hal_fingerprint_default tkcore_device:chr_file rw_file_perms;
