Google Git
Sign in
android / device / google / marlin / a6ca76c^! / .
commita6ca76cbc0e76a1766809ed6d8ffd8b79bf2cea9[log] [tgz]
authorMiguel de Dios <migueldedios@google.com>Fri Jan 19 16:40:27 2018 -0800
committerThierry Strudel <tstrudel@google.com>Thu Feb 01 17:47:50 2018 +0000
tree8d0f39a22cdb21bf8b729b2f5cecae7ff6ad6dda
parentda3c9a4b012a00b11276d25f43a6e9c0685750ed [diff]
SEPolicy changes for enabling hardwareinfo on marlin and sailfish.

Add a hardware_info_app.te for defining the  hardwareinfo doman and
change seapp_contexts to use the hardware_info_app doman.

Change-Id: I2dadde609b14ac552152b7dc50d2cc5d35eb5ccc
Bugs: b/70754991
Test: pts-tradefed run pts -m PtsHardwareInfoDeviceTestCases

diff --git a/init.common.rc b/init.common.rc
index cbd5b6e..bbf7a56 100644
--- a/init.common.rc
+++ b/init.common.rc

@@ -520,6 +520,10 @@
     # Wifi firmware reload path
     chown wifi wifi /sys/module/wlan/parameters/fwpath
 
+    # Allow system to write to cycle_count_id to iterate and get stats
+    chown system system /sys/class/power_supply/bms/cycle_count_id
+    chmod 0666 /sys/class/power_supply/bms/cycle_count_id
+
 on property:wc_transport.start_hci=true
     start vendor.start_hci_filter
 

diff --git a/sepolicy/hardware_info_app.te b/sepolicy/hardware_info_app.te
new file mode 100644
index 0000000..a25be67
--- /dev/null
+++ b/sepolicy/hardware_info_app.te

@@ -0,0 +1,17 @@
+type hardware_info_app, domain;
+
+app_domain(hardware_info_app)
+
+# Services
+allow hardware_info_app app_api_service:service_manager find;
+
+# SysFS
+allow hardware_info_app sysfs_batteryinfo:dir search;
+allow hardware_info_app sysfs_batteryinfo:file { getattr open read write };
+allow hardware_info_app sysfs_camera:dir search;
+allow hardware_info_app sysfs_camera:file { getattr open read };
+allow hardware_info_app sysfs_msm_subsys:dir search;
+allow hardware_info_app sysfs_scsi_devices_0000:dir search;
+allow hardware_info_app sysfs_scsi_devices_0000:file { getattr open read };
+allow hardware_info_app sysfs_soc:dir search;
+allow hardware_info_app sysfs_soc:file { getattr open read };

diff --git a/sepolicy/seapp_contexts b/sepolicy/seapp_contexts
index 3f9ea2c..c02b6eb 100644
--- a/sepolicy/seapp_contexts
+++ b/sepolicy/seapp_contexts

@@ -1,6 +1,9 @@
 # Production default camera application for marlin/sailfish
 user=_app seinfo=google name=com.google.android.GoogleCamera domain=google_camera_app type=app_data_file levelFrom=user
 
+# Hardware info.
+user=_app seinfo=platform name=com.google.android.hardwareinfo domain=hardware_info_app type=app_data_file levelFrom=all
+
 user=system seinfo=platform name=com.quicinc.cne.CNEService domain=qcneservice type=system_app_data_file
 user=system seinfo=platform name=com.google.SSRestartDetector domain=ssr_detector type=system_app_data_file