tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add supplicant service to the dumpstate

Browse source 
exceptions and dontaudit lists.

wpa_supplicant does not have a dump() method, so
dumpstate shouldn't need to access this HAL.

Bug: 213616004
Test: Treehugger tests
Change-Id: I5a0d80725434b56c9663948c3727faea9fb38db6
This commit is contained in:
Gabriel Biren 2022-01-13 21:25:26 +00:00
parent f650c54ee1
commit 3d0529483b
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
public/dumpstate.te
View file

@ -253,6 +253,7 @@ allow dumpstate {
-apex_service
-dumpstate_service
-gatekeeper_service
-hal_wifi_supplicant_service
-virtual_touchpad_service
-vold_service
-default_android_service
@ -262,6 +263,7 @@ dontaudit dumpstate {
apex_service
dumpstate_service
gatekeeper_service
hal_wifi_supplicant_service
virtual_touchpad_service
vold_service
}:service_manager find;

2
public/hal_wifi_supplicant.te
View file

@ -5,8 +5,6 @@ binder_call(hal_wifi_supplicant_server, hal_wifi_supplicant_client)
hal_attribute_hwservice(hal_wifi_supplicant, hal_wifi_supplicant_hwservice)
hal_attribute_service(hal_wifi_supplicant, hal_wifi_supplicant_service)
binder_call(hal_wifi_supplicant_server, servicemanager)
# in addition to ioctls allowlisted for all domains, grant hal_wifi_supplicant priv_sock_ioctls.
allowxperm hal_wifi_supplicant self:udp_socket ioctl priv_sock_ioctls;