tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Exempt data_between_core_and_vendor_violators from vold neverallow

Browse source 
Commit 9a5992336e changed the label of
/data/vendor_de. Unfortunately some devices with very old tz applets
store fingerprint configuration directly in /data/vendor_de.

Since we do not have source code access and we cannot modify/hex patch
the tz applet because it is signed, use the existing
data_between_core_and_vendor_violators attribute to make fingerprint
work again on these devices.

Test: m
Change-Id: Ibb78f837ff808fc5e15c4b790105c07f4501a08b
This commit is contained in:
Michael Bestas 2024-02-14 15:04:35 +02:00 committed by zlewchan
parent 43c750d477
commit caa5a8a29e
2 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
prebuilts/api/34.0/private/vold.te
View file

@ -86,6 +86,7 @@ allow vold {
neverallow {
domain
-vold
-data_between_core_and_vendor_violators
} {
media_userdir_file
system_userdir_file

1
private/vold.te
View file

@ -391,6 +391,7 @@ neverallow {
neverallow {
domain
-vold
-data_between_core_and_vendor_violators
} {
media_userdir_file
system_userdir_file