diff options
| -rw-r--r-- | sepolicy/qti/vendor/device.te | 3 | ||||
| -rw-r--r-- | sepolicy/qti/vendor/file_contexts | 10 | ||||
| -rw-r--r-- | sepolicy/qti/vendor/hal_camera_default.te | 5 | ||||
| -rw-r--r-- | sepolicy/qti/vendor/vl53l1_daemon_main.te | 14 |
4 files changed, 29 insertions, 3 deletions
diff --git a/sepolicy/qti/vendor/device.te b/sepolicy/qti/vendor/device.te index 028d3f6..c9102ae 100644 --- a/sepolicy/qti/vendor/device.te +++ b/sepolicy/qti/vendor/device.te @@ -7,6 +7,9 @@ type vendor_reserve_partition, dev_type; # Sensors type ssc_interactive_device, dev_type; +# TOF +type vendor_tof_device, dev_type; + # Ultrasound type ultrasound_device, dev_type; diff --git a/sepolicy/qti/vendor/file_contexts b/sepolicy/qti/vendor/file_contexts index 6d10e21..823a2f0 100644 --- a/sepolicy/qti/vendor/file_contexts +++ b/sepolicy/qti/vendor/file_contexts @@ -77,13 +77,17 @@ # Storsec /dev/block/platform/soc/1d84000\.ufshc/by-name/storsec_[ab] u:object_r:vendor_custom_ab_block_device:s0 -# USB fast charge -/sys/kernel/fast_charge/force_fast_charge u:object_r:sysfs_fastcharge:s0 -/sys/module/oplus_chg/parameters/force_fast_charge u:object_r:sysfs_fastcharge:s0 +# TOF +/(odm|vendor/odm)/bin/vl53l1_daemon_main u:object_r:vl53l1_daemon_main_exec:s0 +/dev/stmvl53l1_ranging u:object_r:vendor_tof_device:s0 # Touch /(vendor|system/vendor)/bin/hw/vendor\.lineage\.touch@1\.0-service\.oplus u:object_r:hal_lineage_touch_default_exec:s0 +# USB fast charge +/sys/kernel/fast_charge/force_fast_charge u:object_r:sysfs_fastcharge:s0 +/sys/module/oplus_chg/parameters/force_fast_charge u:object_r:sysfs_fastcharge:s0 + # Ultrasound /dev/audio_ultrasound u:object_r:ultrasound_device:s0 /dev/sensor_ultrasound u:object_r:ultrasound_device:s0 diff --git a/sepolicy/qti/vendor/hal_camera_default.te b/sepolicy/qti/vendor/hal_camera_default.te index 43c0a6e..4b84efe 100644 --- a/sepolicy/qti/vendor/hal_camera_default.te +++ b/sepolicy/qti/vendor/hal_camera_default.te @@ -4,6 +4,9 @@ hal_client_domain(hal_camera_default, vendor_hal_cameraMDM) allow hal_camera_default vendor_hal_orms_hwservice:hwservice_manager find; +allow hal_camera_default input_device:chr_file rw_file_perms; +allow hal_camera_default vendor_tof_device:chr_file rw_file_perms; + allow hal_camera_default mnt_vendor_file:dir search; allow hal_camera_default proc_meminfo:file r_file_perms; @@ -11,4 +14,6 @@ allow hal_camera_default proc_meminfo:file r_file_perms; allow hal_camera_default vendor_persist_camera_file:dir w_dir_perms; allow hal_camera_default vendor_persist_camera_file:file create_file_perms; +r_dir_file(hal_camera_default, input_device) + set_prop(hal_camera_default, vendor_camera_prop) diff --git a/sepolicy/qti/vendor/vl53l1_daemon_main.te b/sepolicy/qti/vendor/vl53l1_daemon_main.te new file mode 100644 index 0000000..02e2358 --- /dev/null +++ b/sepolicy/qti/vendor/vl53l1_daemon_main.te @@ -0,0 +1,14 @@ +type vl53l1_daemon_main, domain; +type vl53l1_daemon_main_exec, exec_type, vendor_file_type, file_type; + +init_daemon_domain(vl53l1_daemon_main) + +allow vl53l1_daemon_main self:{ + netlink_generic_socket + netlink_kobject_uevent_socket + netlink_socket +} create_socket_perms_no_ioctl; + +allow vl53l1_daemon_main self:netlink_iscsi_socket { read write create bind }; + +rw_dir_file(vl53l1_daemon_main, mnt_vendor_file) |