diff options
| author | Thierry Strudel <tstrudel@google.com> | 2018-08-20 20:40:23 +0000 |
|---|---|---|
| committer | Android (Google) Code Review <android-gerrit@google.com> | 2018-08-20 20:40:23 +0000 |
| commit | d7504e1c07f48100a76bbcf83e120743b514ffc8 (patch) | |
| tree | 732eea48ba2a3064ccc6b8d3dfffa5702b9ab229 | |
| parent | 128453d0c6e2a3835ea29f2a0ab7d5ceb5fa5dca (diff) | |
| parent | 72c3bd19f517dcf8b579a556e868a7bb95f1c8ea (diff) | |
Merge "sepolicy: add policies for maxim fg history" into pi-dev
| -rw-r--r-- | vendor/google/device.te | 1 | ||||
| -rw-r--r-- | vendor/google/file_contexts | 1 | ||||
| -rw-r--r-- | vendor/qcom/common/hal_dumpstate_impl.te | 2 | ||||
| -rw-r--r-- | vendor/qcom/common/hardware_info_app.te | 4 |
4 files changed, 8 insertions, 0 deletions
diff --git a/vendor/google/device.te b/vendor/google/device.te index dfbfd94..d4bb97a 100644 --- a/vendor/google/device.te +++ b/vendor/google/device.te @@ -1,2 +1,3 @@ type citadel_device, dev_type; type ramoops_device, dev_type; +type maxfg_device, dev_type;
\ No newline at end of file diff --git a/vendor/google/file_contexts b/vendor/google/file_contexts index 0652f30..31a0882 100644 --- a/vendor/google/file_contexts +++ b/vendor/google/file_contexts @@ -2,6 +2,7 @@ /dev/citadel0 u:object_r:citadel_device:s0 /dev/access-metadata u:object_r:ramoops_device:s0 /dev/access-ramoops u:object_r:ramoops_device:s0 +/dev/maxfg_history u:object_r:maxfg_device:s0 /vendor/bin/hw/android\.hardware\.authsecret@1\.0-service\.citadel u:object_r:hal_authsecret_citadel_exec:s0 /vendor/bin/hw/android\.hardware\.oemlock@1\.0-service\.citadel u:object_r:hal_oemlock_citadel_exec:s0 diff --git a/vendor/qcom/common/hal_dumpstate_impl.te b/vendor/qcom/common/hal_dumpstate_impl.te index 431bf41..2780dcf 100644 --- a/vendor/qcom/common/hal_dumpstate_impl.te +++ b/vendor/qcom/common/hal_dumpstate_impl.te @@ -109,6 +109,8 @@ allow hal_dumpstate_impl debugfs_fg_sram:file rw_file_perms; # Dump Maxim FG content allow hal_dumpstate_impl debugfs_maxfg:dir search; allow hal_dumpstate_impl debugfs_maxfg:file r_file_perms; +allow hal_dumpstate_impl tmpfs:dir search; +allow hal_dumpstate_impl maxfg_device:chr_file r_file_perms; # Dump PMIC votables allow hal_dumpstate_impl debugfs_pmic_votable:dir r_dir_perms; diff --git a/vendor/qcom/common/hardware_info_app.te b/vendor/qcom/common/hardware_info_app.te index 9e8e401..5c290fd 100644 --- a/vendor/qcom/common/hardware_info_app.te +++ b/vendor/qcom/common/hardware_info_app.te @@ -24,3 +24,7 @@ allow hardware_info_app sysfs_soc:dir search; allow hardware_info_app sysfs_soc:file { getattr open read }; allow hardware_info_app sysfs_display:dir search; allow hardware_info_app sysfs_display:file { getattr open read }; + +# Devices +allow hardware_info_app tmpfs:dir search; +allow hardware_info_app maxfg_device:chr_file r_file_perms; |