Add SELinux policy for credstore and update for IC HAL port from HIDL to AIDL. The credstore service is a system service which backs the android.security.identity.* Framework APIs. It essentially calls into the Identity Credential HAL while providing persistent storage for credentials. Bug: 111446262 Test: atest android.security.identity.cts Test: VtsHalIdentityTargetTest Test: android.hardware.identity-support-lib-test Change-Id: I5cd9a6ae810e764326355c0842e88c490f214c60

commit: 02bf814aa24e4b69c5fa356958f9de91badbde26 [log] [tgz]
author: David Zeuthen <zeuthen@google.com> Fri Jan 17 16:47:53 2020 -0500
committer: David Zeuthen <zeuthen@google.com> Wed Feb 19 13:46:45 2020 -0500
tree: 79d215497cc3ce307bb727f96a0694a0857e710a
parent: 429ce33777ffd92d3b0538b718761a0584d5bfe8 [diff] [blame]
diff --git a/public/hal_identity.te b/public/hal_identity.te
index a8df186..3a95743 100644
--- a/public/hal_identity.te
+++ b/public/hal_identity.te

@@ -1,4 +1,7 @@
 # HwBinder IPC from client to server
 binder_call(hal_identity_client, hal_identity_server)
 
-hal_attribute_hwservice(hal_identity, hal_identity_hwservice)
+add_service(hal_identity_server, hal_identity_service)
+binder_call(hal_identity_server, servicemanager)
+
+allow hal_identity_client hal_identity_service:service_manager find;
commit	02bf814aa24e4b69c5fa356958f9de91badbde26	[log] [tgz]
author	David Zeuthen <zeuthen@google.com>	Fri Jan 17 16:47:53 2020 -0500
committer	David Zeuthen <zeuthen@google.com>	Wed Feb 19 13:46:45 2020 -0500
tree	79d215497cc3ce307bb727f96a0694a0857e710a
parent	429ce33777ffd92d3b0538b718761a0584d5bfe8 [diff] [blame]