Exempt data_between_core_and_vendor_violators from vold neverallow

Commit 9a5992336e changed the label of
/data/vendor_de. Unfortunately some devices with very old tz applets
store fingerprint configuration directly in /data/vendor_de.

Since we do not have source code access and we cannot modify/hex patch
the tz applet because it is signed, use the existing
data_between_core_and_vendor_violators attribute to make fingerprint
work again on these devices.

Test: m
Change-Id: Ibb78f837ff808fc5e15c4b790105c07f4501a08b
This commit is contained in:
Michael Bestas 2024-02-14 15:04:35 +02:00 committed by zlewchan
parent 43c750d477
commit caa5a8a29e
2 changed files with 2 additions and 0 deletions

View file

@ -86,6 +86,7 @@ allow vold {
neverallow { neverallow {
domain domain
-vold -vold
-data_between_core_and_vendor_violators
} { } {
media_userdir_file media_userdir_file
system_userdir_file system_userdir_file

View file

@ -391,6 +391,7 @@ neverallow {
neverallow { neverallow {
domain domain
-vold -vold
-data_between_core_and_vendor_violators
} { } {
media_userdir_file media_userdir_file
system_userdir_file system_userdir_file