Add SeLinux policy for supplicant AIDL service. am: 4a0673e369

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1845631

Change-Id: I08f099f885993fb45e64db23f28e958f8af995ca
This commit is contained in:
Gabriel Biren 2021-11-03 15:02:16 +00:00 committed by Automerger Merge Worker
commit 9229edf01d
4 changed files with 6 additions and 0 deletions

View file

@ -20,6 +20,7 @@
hal_uwb_service hal_uwb_service
hal_uwb_vendor_service hal_uwb_vendor_service
hal_wifi_hostapd_service hal_wifi_hostapd_service
hal_wifi_supplicant_service
hal_nlinterceptor_service hal_nlinterceptor_service
hypervisor_prop hypervisor_prop
locale_service locale_service

View file

@ -27,6 +27,7 @@ android.hardware.vibrator.IVibrator/default u:object_r:
android.hardware.vibrator.IVibratorManager/default u:object_r:hal_vibrator_service:s0 android.hardware.vibrator.IVibratorManager/default u:object_r:hal_vibrator_service:s0
android.hardware.weaver.IWeaver/default u:object_r:hal_weaver_service:s0 android.hardware.weaver.IWeaver/default u:object_r:hal_weaver_service:s0
android.hardware.wifi.hostapd.IHostapd/default u:object_r:hal_wifi_hostapd_service:s0 android.hardware.wifi.hostapd.IHostapd/default u:object_r:hal_wifi_hostapd_service:s0
android.hardware.wifi.supplicant.ISupplicant/default u:object_r:hal_wifi_supplicant_service:s0
android.frameworks.stats.IStats/default u:object_r:fwk_stats_service:s0 android.frameworks.stats.IStats/default u:object_r:fwk_stats_service:s0
android.system.keystore2.IKeystoreService/default u:object_r:keystore_service:s0 android.system.keystore2.IKeystoreService/default u:object_r:keystore_service:s0
android.system.suspend.ISystemSuspend/default u:object_r:hal_system_suspend_service:s0 android.system.suspend.ISystemSuspend/default u:object_r:hal_system_suspend_service:s0

View file

@ -3,6 +3,9 @@ binder_call(hal_wifi_supplicant_client, hal_wifi_supplicant_server)
binder_call(hal_wifi_supplicant_server, hal_wifi_supplicant_client) binder_call(hal_wifi_supplicant_server, hal_wifi_supplicant_client)
hal_attribute_hwservice(hal_wifi_supplicant, hal_wifi_supplicant_hwservice) hal_attribute_hwservice(hal_wifi_supplicant, hal_wifi_supplicant_hwservice)
hal_attribute_service(hal_wifi_supplicant, hal_wifi_supplicant_service)
binder_call(hal_wifi_supplicant_server, servicemanager)
# in addition to ioctls allowlisted for all domains, grant hal_wifi_supplicant priv_sock_ioctls. # in addition to ioctls allowlisted for all domains, grant hal_wifi_supplicant priv_sock_ioctls.
allowxperm hal_wifi_supplicant self:udp_socket ioctl priv_sock_ioctls; allowxperm hal_wifi_supplicant self:udp_socket ioctl priv_sock_ioctls;

View file

@ -249,6 +249,7 @@ type wpantund_service, system_api_service, service_manager_type;
type tethering_service, app_api_service, ephemeral_app_api_service, system_server_service, service_manager_type; type tethering_service, app_api_service, ephemeral_app_api_service, system_server_service, service_manager_type;
type emergency_affordance_service, system_server_service, service_manager_type; type emergency_affordance_service, system_server_service, service_manager_type;
type hal_wifi_hostapd_service, vendor_service, protected_service, service_manager_type; type hal_wifi_hostapd_service, vendor_service, protected_service, service_manager_type;
type hal_wifi_supplicant_service, vendor_service, protected_service, service_manager_type;
### ###
### HAL Services ### HAL Services