tequilaOS/platform_build
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

am c0f0e8ca: am 13b48588: Merge "Allow qemu_device read-write access to various processes"

Browse source 
* commit 'c0f0e8cab7268d372b5bded8b141133c2257f964':
  Allow qemu_device read-write access to various processes
This commit is contained in:
Ji-Hwan Lee 2014-05-19 16:52:15 +00:00 committed by Android Git Automerger
commit d9f11a3f2b
10 changed files with 14 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
target/board/generic/BoardConfig.mk
View file

@ -78,6 +78,7 @@ TARGET_USERIMAGES_SPARSE_EXT_DISABLED := true
BOARD_SEPOLICY_DIRS += build/target/board/generic/sepolicy BOARD_SEPOLICY_DIRS += build/target/board/generic/sepolicy
BOARD_SEPOLICY_UNION += \ BOARD_SEPOLICY_UNION += \
adbd.te \ adbd.te \
app.te \
bootanim.te \ bootanim.te \
device.te \ device.te \
domain.te \ domain.te \
@ -88,4 +89,5 @@ BOARD_SEPOLICY_UNION += \
rild.te \ rild.te \
shell.te \ shell.te \
surfaceflinger.te \ surfaceflinger.te \
system_server.te system_server.te \
zygote.te

1
target/board/generic/sepolicy/app.te Normal file
View file

@ -0,0 +1 @@
allow appdomain qemu_device:chr_file rw_file_perms;

1
target/board/generic/sepolicy/bootanim.te
View file

@ -1,2 +1,3 @@
allow bootanim self:process execmem; allow bootanim self:process execmem;
allow bootanim ashmem_device:chr_file execute; allow bootanim ashmem_device:chr_file execute;
allow bootanim qemu_device:chr_file rw_file_perms;

1
target/board/generic/sepolicy/surfaceflinger.te
View file

@ -1,2 +1,3 @@
allow surfaceflinger self:process execmem; allow surfaceflinger self:process execmem;
allow surfaceflinger ashmem_device:chr_file execute; allow surfaceflinger ashmem_device:chr_file execute;
allow surfaceflinger qemu_device:chr_file rw_file_perms;

1
target/board/generic/sepolicy/zygote.te Normal file
View file

@ -0,0 +1 @@
allow zygote qemu_device:chr_file rw_file_perms;

3
target/board/generic_x86/BoardConfig.mk
View file

@ -44,7 +44,9 @@ TARGET_USERIMAGES_SPARSE_EXT_DISABLED := true
BOARD_SEPOLICY_DIRS += build/target/board/generic_x86/sepolicy BOARD_SEPOLICY_DIRS += build/target/board/generic_x86/sepolicy
BOARD_SEPOLICY_UNION += \ BOARD_SEPOLICY_UNION += \
app.te \
adbd.te \ adbd.te \
bootanim.te \
device.te \ device.te \
domain.te \ domain.te \
file.te \ file.te \
@ -55,5 +57,6 @@ BOARD_SEPOLICY_UNION += \
qemud.te \ qemud.te \
rild.te \ rild.te \
shell.te \ shell.te \
surfaceflinger.te \
system_server.te \ system_server.te \
zygote.te zygote.te

1
target/board/generic_x86/sepolicy/app.te Normal file
View file

@ -0,0 +1 @@
allow appdomain qemu_device:chr_file rw_file_perms;

1
target/board/generic_x86/sepolicy/bootanim.te Normal file
View file

@ -0,0 +1 @@
allow bootanim qemu_device:chr_file rw_file_perms;

1
target/board/generic_x86/sepolicy/surfaceflinger.te Normal file
View file

@ -0,0 +1 @@
allow surfaceflinger qemu_device:chr_file rw_file_perms;

1
target/board/generic_x86/sepolicy/zygote.te
View file

@ -1,2 +1,3 @@
allow zygote self:process execmem; allow zygote self:process execmem;
allow zygote self:capability sys_nice; allow zygote self:capability sys_nice;
allow zygote qemu_device:chr_file rw_file_perms;