sm8350-common: sepolicy: Address a cameraserver neverallow
- For some reason, allowing cameraserver to access sysfs_leds on lahaina results in a neverallow. - Hence, allow cameraserver to access a new type, sysfs_torch which only accesses the relevant nodes we utilize to alleviate the neverallow. Change-Id: I8625b32f2bb501bbf85f0c026dca22a8e0bcc939 Signed-off-by: Cyber Knight <cyberknight755@gmail.com>
This commit is contained in:
Cyber Knight
DigiGoon
parent
d25addbc31
commit
a391cb0839
3 changed files with 5 additions and 4 deletions
2
sepolicy/vendor/cameraserver.te
vendored
2
sepolicy/vendor/cameraserver.te
vendored
|
|
@ -1 +1 @@
|
||||||
allow cameraserver sysfs_leds:file rw_file_perms;
|
allow cameraserver sysfs_torch:file rw_file_perms;
|
||||||
|
|
|
||||||
6
sepolicy/vendor/genfs_contexts
vendored
6
sepolicy/vendor/genfs_contexts
vendored
|
|
@ -8,9 +8,9 @@ genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc
|
||||||
genfscon sysfs /devices/platform/soc/soc:qcom,pmic_glink/soc:qcom,pmic_glink:qcom,ucsi/typec u:object_r:vendor_sysfs_usb_c:s0
|
genfscon sysfs /devices/platform/soc/soc:qcom,pmic_glink/soc:qcom,pmic_glink:qcom,ucsi/typec u:object_r:vendor_sysfs_usb_c:s0
|
||||||
|
|
||||||
# Torch control
|
# Torch control
|
||||||
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8350c@2:qcom,flash_led@ee00/leds/led:torch_1/brightness u:object_r:sysfs_leds:s0
|
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8350c@2:qcom,flash_led@ee00/leds/led:torch_1/brightness u:object_r:sysfs_torch:s0
|
||||||
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8350c@2:qcom,flash_led@ee00/leds/led:torch_1/max_brightness u:object_r:sysfs_leds:s0
|
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8350c@2:qcom,flash_led@ee00/leds/led:torch_1/max_brightness u:object_r:sysfs_torch:s0
|
||||||
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8350c@2:qcom,flash_led@ee00/leds/led:switch_1/brightness u:object_r:sysfs_leds:s0
|
genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8350c@2:qcom,flash_led@ee00/leds/led:switch_1/brightness u:object_r:sysfs_torch:s0
|
||||||
|
|
||||||
# Wakeup nodes
|
# Wakeup nodes
|
||||||
genfscon sysfs /devices/platform/goodix_ts.0/wakeup u:object_r:sysfs_wakeup:s0
|
genfscon sysfs /devices/platform/goodix_ts.0/wakeup u:object_r:sysfs_wakeup:s0
|
||||||
|
|
|
||||||
1
sepolicy/vendor/torch.te
vendored
Normal file
1
sepolicy/vendor/torch.te
vendored
Normal file
|
|
@ -0,0 +1 @@
|
||||||
|
type sysfs_torch, fs_type, sysfs_type;
|
||||||
Loading…
Add table
Reference in a new issue