openharmony/security_selinux
1
0
Fork 0
mirror of https://gitee.com/openharmony/security_selinux synced 2024-11-23 13:30:05 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

!2472 feature:add usb ddk sepolicy

Browse Source 
Merge pull request !2472 from 吴成文/master
This commit is contained in:
openharmony_ci 2023-06-09 10:21:20 +00:00 committed by Gitee
commit eca9de5428
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
3 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
sepolicy/ohos_policy/drivers/adapter/public/hdf_service.te
View File

@ -48,6 +48,7 @@ type hdf_activity_interface_service, hdf_service_attr;
type hdf_usb_interface_service, hdf_service_attr;
type hdf_usbfn_mtp_interface_service, hdf_service_attr;
type hdf_usb_ddk_service, hdf_service_attr;
type hdf_usb_pnp_sample_service, hdf_service_attr;
type hdf_usbhost_acm_pnp_service, hdf_service_attr;
type hdf_usbhost_acm_rawapi_service, hdf_service_attr;

1
sepolicy/ohos_policy/drivers/adapter/public/hdf_service_contexts
View File

@ -67,6 +67,7 @@ allocator_service u:object_r:hdf_allocator_service:s0
usb_interface_service u:object_r:hdf_usb_interface_service:s0
usbfn_mtp_interface_service u:object_r:hdf_usbfn_mtp_interface_service:s0
usb_ddk_service u:object_r:hdf_usb_ddk_service:s0
partition_slot_service u:object_r:hdf_partition_slot_service:s0
wlan_interface_service u:object_r:hdf_wlan_interface_service:s0

6
sepolicy/ohos_policy/drivers/peripheral/usb/vendor/usb_host.te vendored
View File

@ -14,8 +14,8 @@
allow usb_host dev_console_file:chr_file { read write };
allow usb_host sa_usb_service:samgr_class { add };
allow usb_host data_service_file:dir { search };
allow usb_host data_service_el1_file:dir { search };
allow usb_host data_service_el1_file:file { ioctl open read write getattr };
allow usb_host data_service_el1_file:dir { search add_name write};
allow usb_host data_service_el1_file:file { ioctl open read write getattr create map};
allow usb_host hdf_usbhost_acm_pnp_service:hdf_devmgr_class { add };
allow usb_host hdf_usbhost_acm_rawapi_service:hdf_devmgr_class { add };
allow usb_host hdf_usbhost_ecm_pnp_service:hdf_devmgr_class { add };
@ -78,6 +78,7 @@ allow usb_host configfs:lnk_file { create unlink };
debug_only(`
allow usb_host console:binder { call };
allow usb_host console:fd { use };
allow usb_host sh:binder { call };
')
allow usb_host data_file:dir { search };
allow usb_host data_init_agent:dir { search };
@ -108,6 +109,7 @@ allow usb_host hdf_usbd:hdf_devmgr_class { add };
allow usb_host hdf_usbfn_cdcacm:hdf_devmgr_class { add get };
allow usb_host hdf_usbfn_cdcecm:hdf_devmgr_class { add get };
allow usb_host hdf_usbfn:hdf_devmgr_class { add get };
allow usb_host hdf_usb_ddk_service:hdf_devmgr_class { add };
allow usb_host hiview:binder { call };
allow usb_host kernel:unix_stream_socket { connectto };
allow usb_host paramservice_socket:sock_file { write };