Merge "Move aac_drc props to aac_drc_prop"
This commit is contained in:
Treehugger Robot
Gerrit Code Review
commit
a00b1ea2db
6 changed files with 17 additions and 8 deletions
|
|
@ -5,6 +5,7 @@
|
|||
(typeattribute new_objects)
|
||||
(typeattributeset new_objects
|
||||
( new_objects
|
||||
aac_drc_prop
|
||||
activity_task_service
|
||||
adb_service
|
||||
app_binding_service
|
||||
|
|
|
|||
|
|
@ -1339,7 +1339,10 @@
|
|||
(typeattributeset ethernet_service_30_0 (ethernet_service))
|
||||
(typeattributeset exfat_30_0 (exfat))
|
||||
(typeattributeset exported2_config_prop_30_0 (exported2_config_prop systemsound_config_prop))
|
||||
(typeattributeset exported2_default_prop_30_0 (exported2_default_prop libc_debug_prop))
|
||||
(typeattributeset exported2_default_prop_30_0
|
||||
( exported2_default_prop
|
||||
aac_drc_prop
|
||||
libc_debug_prop))
|
||||
(typeattributeset exported2_radio_prop_30_0 (exported2_radio_prop))
|
||||
(typeattributeset exported2_system_prop_30_0
|
||||
( exported2_system_prop
|
||||
|
|
|
|||
|
|
@ -521,16 +521,15 @@ persist.sys.zram_enabled u:object_r:exported2_system_prop:s0 exact bool
|
|||
sys.usb.config u:object_r:exported_system_radio_prop:s0 exact string
|
||||
sys.usb.configfs u:object_r:exported_system_radio_prop:s0 exact int
|
||||
|
||||
aac_drc_boost u:object_r:exported2_default_prop:s0 exact int
|
||||
aac_drc_cut u:object_r:exported2_default_prop:s0 exact int
|
||||
aac_drc_enc_target_level u:object_r:exported2_default_prop:s0 exact int
|
||||
aac_drc_heavy u:object_r:exported2_default_prop:s0 exact int
|
||||
aac_drc_reference_level u:object_r:exported2_default_prop:s0 exact int
|
||||
aac_drc_boost u:object_r:aac_drc_prop:s0 exact int
|
||||
aac_drc_cut u:object_r:aac_drc_prop:s0 exact int
|
||||
aac_drc_enc_target_level u:object_r:aac_drc_prop:s0 exact int
|
||||
aac_drc_heavy u:object_r:aac_drc_prop:s0 exact int
|
||||
aac_drc_reference_level u:object_r:aac_drc_prop:s0 exact int
|
||||
ro.aac_drc_effect_type u:object_r:aac_drc_prop:s0 exact int
|
||||
|
||||
build.version.extensions. u:object_r:module_sdkextensions_prop:s0 prefix int
|
||||
|
||||
ro.aac_drc_effect_type u:object_r:exported2_default_prop:s0 exact int
|
||||
|
||||
drm.64bit.enabled u:object_r:exported2_default_prop:s0 exact bool
|
||||
|
||||
dumpstate.dry_run u:object_r:exported_dumpstate_prop:s0 exact bool
|
||||
|
|
|
|||
|
|
@ -541,6 +541,8 @@ compatible_property_only(`
|
|||
neverallow { domain -coredomain -vendor_init } exported_pm_prop:file no_rw_file_perms;
|
||||
')
|
||||
|
||||
neverallow { domain -init } aac_drc_prop:property_service set;
|
||||
|
||||
# Do not allow reading device's serial number from system properties except form
|
||||
# a few whitelisted domains.
|
||||
neverallow {
|
||||
|
|
|
|||
|
|
@ -54,6 +54,7 @@ compatible_property_only(`
|
|||
')
|
||||
|
||||
# Properties which can't be written outside system
|
||||
system_restricted_prop(aac_drc_prop)
|
||||
system_restricted_prop(binder_cache_bluetooth_server_prop)
|
||||
system_restricted_prop(binder_cache_system_server_prop)
|
||||
system_restricted_prop(binder_cache_telephony_server_prop)
|
||||
|
|
|
|||
3
vendor/mediacodec.te
vendored
3
vendor/mediacodec.te
vendored
|
|
@ -23,6 +23,9 @@ allow mediacodec video_device:dir search;
|
|||
|
||||
crash_dump_fallback(mediacodec)
|
||||
|
||||
# get aac_drc_* properties
|
||||
get_prop(mediacodec, aac_drc_prop)
|
||||
|
||||
# mediacodec should never execute any executable without a domain transition
|
||||
neverallow mediacodec { file_type fs_type }:file execute_no_trans;
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue