Merge "Add permissions for new netd AIDL HAL" am: e47782171a

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2095165

Change-Id: I28a8dea121386f90f48850326a8d1c1a41984d6d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Devin Moore 2022-06-10 19:41:26 +00:00 committed by Automerger Merge Worker
commit ff958713a2
4 changed files with 7 additions and 0 deletions

View file

@ -7,6 +7,7 @@
( new_objects
device_config_vendor_system_native_prop
hal_bootctl_service
system_net_netd_service
virtual_face_hal_prop
virtual_fingerprint_hal_prop
))

View file

@ -70,6 +70,7 @@ android.hardware.wifi.supplicant.ISupplicant/default u:object_r:
android.frameworks.stats.IStats/default u:object_r:fwk_stats_service:s0
android.se.omapi.ISecureElementService/default u:object_r:secure_element_service:s0
android.system.keystore2.IKeystoreService/default u:object_r:keystore_service:s0
android.system.net.netd.INetd/default u:object_r:system_net_netd_service:s0
android.system.suspend.ISystemSuspend/default u:object_r:hal_system_suspend_service:s0
accessibility u:object_r:accessibility_service:s0

View file

@ -113,6 +113,10 @@ allow netd self:netlink_xfrm_socket { create_socket_perms_no_ioctl nlmsg_write n
add_hwservice(netd, system_net_netd_hwservice)
hwbinder_use(netd)
# AIDL hal server
binder_call(system_net_netd_service, servicemanager)
add_service(netd, system_net_netd_service)
###
### Neverallow rules
###

View file

@ -44,6 +44,7 @@ type service_manager_service, service_manager_type;
type storaged_service, service_manager_type;
type surfaceflinger_service, app_api_service, ephemeral_app_api_service, service_manager_type;
type system_app_service, service_manager_type;
type system_net_netd_service, service_manager_type;
type system_suspend_control_internal_service, service_manager_type;
type system_suspend_control_service, service_manager_type;
type update_engine_service, service_manager_type;