75806ef3c5
Ideally, public should only contain APIs (types / attributes) for
vendor. The other statements like allow/neverallow/typeattributes are
regarded as implementation detail for platform and should be in private.
Bug: 232023812
Test: m selinux_policy
Test: diff <(git diff --staged | grep "^-" | cut -b2- | sort) \
<(git diff --staged | grep "^+" | cut -b2- | sort)
Test: remove comments on plat_sepolicy.cil, replace base_typeattr_*
to base_typeattr and then compare old and new plat_sepolicy.cil
Change-Id: I5e7d2da4465ab0216de6bacdf03077d37f6ffe12
23 lines
645 B
Text
23 lines
645 B
Text
typeattribute charger coredomain;
|
|
|
|
# The system charger is a client of HIDL health HAL.
|
|
hal_client_domain(charger, hal_health)
|
|
|
|
# charger needs to tell init to continue the boot
|
|
# process when running in charger mode.
|
|
# The system charger needs to be allowed to set these properties on legacy devices.
|
|
set_prop(charger, system_prop)
|
|
set_prop(charger, exported_system_prop)
|
|
set_prop(charger, exported3_system_prop)
|
|
|
|
# The system charger can read ro.charger.*
|
|
get_prop(charger, charger_prop)
|
|
|
|
compatible_property_only(`
|
|
neverallow {
|
|
domain
|
|
-init
|
|
-dumpstate
|
|
-charger
|
|
} charger_prop:file no_rw_file_perms;
|
|
')
|