Merge "Fingerprint data is now stored in one of two ways depending on the"
This commit is contained in:
TreeHugger Robot
Android (Google) Code Review
commit
8cd8c42223
7 changed files with 18 additions and 0 deletions
|
|
@ -34,6 +34,7 @@
|
|||
exported2_vold_prop
|
||||
exported3_default_prop
|
||||
exported3_system_prop
|
||||
fingerprint_vendor_data_file
|
||||
fs_bpf
|
||||
hal_authsecret_hwservice
|
||||
hal_broadcastradio_hwservice
|
||||
|
|
|
|||
|
|
@ -417,6 +417,9 @@
|
|||
# Fingerprint data
|
||||
/data/system/users/[0-9]+/fpdata(/.*)? u:object_r:fingerprintd_data_file:s0
|
||||
|
||||
# Fingerprint vendor data file
|
||||
/data/vendor_de/[0-9]+/fpdata(/.*)? u:object_r:fingerprint_vendor_data_file:s0
|
||||
|
||||
# Bootchart data
|
||||
/data/bootchart(/.*)? u:object_r:bootchart_data_file:s0
|
||||
|
||||
|
|
|
|||
|
|
@ -13,3 +13,4 @@ allow vold_prepare_subdirs system_data_file:dir { open read write add_name remov
|
|||
allow vold_prepare_subdirs vold_data_file:dir { create open read write search getattr setattr remove_name rmdir };
|
||||
allow vold_prepare_subdirs vold_data_file:file { getattr unlink };
|
||||
allow vold_prepare_subdirs storaged_data_file:dir create_dir_perms;
|
||||
allow vold_prepare_subdirs fingerprint_vendor_data_file:dir create_dir_perms;
|
||||
|
|
|
|||
|
|
@ -768,6 +768,7 @@ full_treble_only(`
|
|||
-data_between_core_and_vendor_violators
|
||||
-init
|
||||
-vendor_init
|
||||
-vold_prepare_subdirs
|
||||
} {
|
||||
data_file_type
|
||||
-core_data_file_type
|
||||
|
|
@ -778,6 +779,7 @@ full_treble_only(`
|
|||
-data_between_core_and_vendor_violators
|
||||
-init
|
||||
-vendor_init
|
||||
-vold_prepare_subdirs
|
||||
} {
|
||||
data_file_type
|
||||
-core_data_file_type
|
||||
|
|
|
|||
|
|
@ -295,6 +295,8 @@ type backup_data_file, file_type, data_file_type, core_data_file_type, mlstruste
|
|||
type bluetooth_efs_file, file_type;
|
||||
# Type for fingerprint template file
|
||||
type fingerprintd_data_file, file_type, data_file_type, core_data_file_type;
|
||||
# Type for _new_ fingerprint template file
|
||||
type fingerprint_vendor_data_file, file_type, data_file_type;
|
||||
# Type for appfuse file.
|
||||
type app_fuse_file, file_type, data_file_type, core_data_file_type, mlstrustedobject;
|
||||
|
||||
|
|
|
|||
|
|
@ -8,5 +8,10 @@ allow hal_fingerprint_client hal_fingerprint_hwservice:hwservice_manager find;
|
|||
# For memory allocation
|
||||
allow hal_fingerprint ion_device:chr_file r_file_perms;
|
||||
|
||||
allow hal_fingerprint fingerprint_vendor_data_file:file { create_file_perms };
|
||||
allow hal_fingerprint fingerprint_vendor_data_file:dir rw_dir_perms;
|
||||
|
||||
r_dir_file(hal_fingerprint, cgroup)
|
||||
r_dir_file(hal_fingerprint, sysfs)
|
||||
|
||||
|
||||
|
|
|
|||
|
|
@ -5,3 +5,7 @@ type tee, domain;
|
|||
|
||||
# Device(s) for communicating with the TEE
|
||||
type tee_device, dev_type;
|
||||
|
||||
allow tee fingerprint_vendor_data_file:dir rw_dir_perms;
|
||||
allow tee fingerprint_vendor_data_file:file create_file_perms;
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue