From d553822cd1d1dfc9a06007ef9b86c98ca8af62d8 Mon Sep 17 00:00:00 2001 From: Simon1511 Date: Sun, 6 Nov 2022 12:12:08 +0100 Subject: [PATCH] sm7125-common: Add sepolicy for UdfpsHandler And also fix a dumb spelling mistake along the way lol Change-Id: Ia7930b6ea149777a01eee3e13ff32c5d7234903e Change-Id: I4fe37450f38c2991e024b7590a579f521136e848 --- sepolicy/public/property.te | 2 ++ sepolicy/vendor/genfs_contexts | 2 +- sepolicy/vendor/hal_fingerprint_default.te | 3 +++ sepolicy/vendor/property_contexts | 3 +++ sepolicy/vendor/system_app.te | 8 ++++++++ 5 files changed, 17 insertions(+), 1 deletion(-) create mode 100644 sepolicy/public/property.te diff --git a/sepolicy/public/property.te b/sepolicy/public/property.te new file mode 100644 index 0000000..7de6666 --- /dev/null +++ b/sepolicy/public/property.te @@ -0,0 +1,2 @@ +# Fingerprint +system_public_prop(vendor_fingerprint_prop) diff --git a/sepolicy/vendor/genfs_contexts b/sepolicy/vendor/genfs_contexts index 236ec8e..2e92090 100644 --- a/sepolicy/vendor/genfs_contexts +++ b/sepolicy/vendor/genfs_contexts @@ -18,7 +18,7 @@ genfscon sysfs /module/lpm_levels/parameters/ genfscon sysfs /devices/platform/soc/8804000.sdhci/mmc_host/mmc0/mmc0:0001/block/mmcblk0/ u:object_r:vendor_sysfs_mmc_host:s0 genfscon sysfs /devices/platform/soc/1d84000.ufshc/host0/target0:0:0/0:0:0:0/block/sda/queue/discard_max_bytes u:object_r:vendor_sysfs_mmc_host:s0 genfscon sysfs /devices/platform/soc/soc:qcom,msm-ext-disp/extcon/extcon0/state u:object_r:sysfs_graphics:s0 -genfscon sysfs /ddevices/platform/soc/88e0000.qcom,msm-eud/extcon/extcon2/cable.1/name u:object_r:sysfs_graphics:s0 +genfscon sysfs /devices/platform/soc/88e0000.qcom,msm-eud/extcon/extcon2/cable.1/name u:object_r:sysfs_graphics:s0 genfscon sysfs /devices/virtual/lcd/panel/ u:object_r:sysfs_lcd_writable:s0 genfscon sysfs /devices/platform/soc/9800000.qcom,npu/subsys6/ u:object_r:sysfs_npu:s0 genfscon sysfs /devices/platform/soc/soc:battery/power_supply/ u:object_r:sysfs_battery:s0 diff --git a/sepolicy/vendor/hal_fingerprint_default.te b/sepolicy/vendor/hal_fingerprint_default.te index 6eb8ef8..18dec7b 100644 --- a/sepolicy/vendor/hal_fingerprint_default.te +++ b/sepolicy/vendor/hal_fingerprint_default.te @@ -27,3 +27,6 @@ allow hal_fingerprint_default biometrics_vendor_data_file:dir { read write open # /sys/class/sec/tsp/ allow hal_fingerprint_default sysfs_sec_touchscreen:dir search; allow hal_fingerprint_default sysfs_touchscreen_writable:file { write open getattr }; + +# vendor.finger.down +set_prop(hal_fingerprint_default, vendor_fingerprint_prop) diff --git a/sepolicy/vendor/property_contexts b/sepolicy/vendor/property_contexts index 4a5801e..abc1c4d 100644 --- a/sepolicy/vendor/property_contexts +++ b/sepolicy/vendor/property_contexts @@ -8,6 +8,9 @@ persist.vendor.bt. u:object_r:vendor_bluetooth_pro # fastcharge persist.vendor.sec.fastchg_enabled u:object_r:vendor_fastcharge_prop:s0 +# Fingerprint +vendor.finger.down u:object_r:vendor_fingerprint_prop:s0 + # Perf ro.vendor.extension_library u:object_r:vendor_mpctl_prop:s0 diff --git a/sepolicy/vendor/system_app.te b/sepolicy/vendor/system_app.te index be81216..a8fe735 100644 --- a/sepolicy/vendor/system_app.te +++ b/sepolicy/vendor/system_app.te @@ -6,3 +6,11 @@ allow system_app sysfs_zram:file { read open getattr }; binder_call(system_app, hal_power_default) binder_call(system_app, hal_vibrator_default) + +# MDNIE +allow system_app sysfs_mdnie_writable:dir search; +allow system_app sysfs_mdnie_writable:file { open write getattr }; + +# UDFPS +set_prop(system_app, vendor_fingerprint_prop) +get_prop(system_app, vendor_fingerprint_prop)