Add sepolicy for new module.
Bug: b/241442337
Test: TH
Change-Id: Ia58e2d4b205638509545a0a2c356cd68862beb1f
diff --git a/apex/Android.bp b/apex/Android.bp
index bbe2193..c4080ca 100644
--- a/apex/Android.bp
+++ b/apex/Android.bp
@@ -286,3 +286,10 @@
"com.android.rkpd-file_contexts",
],
}
+
+filegroup {
+ name: "com.android.devicelock-file_contexts",
+ srcs: [
+ "com.android.devicelock-file_contexts",
+ ],
+}
diff --git a/apex/com.android.devicelock-file_contexts b/apex/com.android.devicelock-file_contexts
new file mode 100644
index 0000000..83b4b58
--- /dev/null
+++ b/apex/com.android.devicelock-file_contexts
@@ -0,0 +1 @@
+(/.*)? u:object_r:system_file:s0
diff --git a/build/soong/service_fuzzer_bindings.go b/build/soong/service_fuzzer_bindings.go
index 822cabc..05e55ba 100644
--- a/build/soong/service_fuzzer_bindings.go
+++ b/build/soong/service_fuzzer_bindings.go
@@ -180,6 +180,7 @@
"device_policy": []string{},
"device_identifiers": []string{},
"deviceidle": []string{},
+ "device_lock": []string{},
"device_state": []string{},
"devicestoragemonitor": []string{},
"diskstats": []string{},
diff --git a/private/compat/33.0/33.0.ignore.cil b/private/compat/33.0/33.0.ignore.cil
index ad10722..6d82d0f 100644
--- a/private/compat/33.0/33.0.ignore.cil
+++ b/private/compat/33.0/33.0.ignore.cil
@@ -10,6 +10,7 @@
credential_service
device_config_memory_safety_native_prop
device_config_vendor_system_native_prop
+ devicelock_service
hal_bootctl_service
hal_remoteaccess_service
hal_tv_input_service
diff --git a/private/service_contexts b/private/service_contexts
index 92f79c7..f8c99df 100644
--- a/private/service_contexts
+++ b/private/service_contexts
@@ -165,6 +165,7 @@
device_policy u:object_r:device_policy_service:s0
device_identifiers u:object_r:device_identifiers_service:s0
deviceidle u:object_r:deviceidle_service:s0
+device_lock u:object_r:devicelock_service:s0
device_state u:object_r:device_state_service:s0
devicestoragemonitor u:object_r:devicestoragemonitor_service:s0
diskstats u:object_r:diskstats_service:s0
diff --git a/public/service.te b/public/service.te
index 2b43fc2..a844b82 100644
--- a/public/service.te
+++ b/public/service.te
@@ -120,6 +120,7 @@
type font_service, app_api_service, ephemeral_app_api_service, system_server_service, service_manager_type;
type netd_listener_service, system_server_service, service_manager_type;
type network_watchlist_service, system_server_service, service_manager_type;
+type devicelock_service, app_api_service, ephemeral_app_api_service, system_server_service, service_manager_type;
type DockObserver_service, system_server_service, service_manager_type;
type dreams_service, app_api_service, ephemeral_app_api_service, system_server_service, service_manager_type;
type dropbox_service, app_api_service, ephemeral_app_api_service, system_server_service, service_manager_type;