Restrict HMS props write access to system server only
Bug: 346604998
Flag: EXEMPT sepolicy
Test: n/a
Change-Id: I6e4fd686bec91ee0ad83788df32f39a3e50e2a49
diff --git a/private/property_contexts b/private/property_contexts
index eaa55b9..7fda763 100644
--- a/private/property_contexts
+++ b/private/property_contexts
@@ -1747,6 +1747,13 @@
# Properties for game manager service
persist.graphics.game_default_frame_rate.enabled u:object_r:game_manager_config_prop:s0 exact bool
+# Properties for the HintManagerService
+persist.hms.use_hal_headrooms u:object_r:hint_manager_config_prop:s0 exact bool
+persist.hms.check_headroom_tid u:object_r:hint_manager_config_prop:s0 exact bool
+persist.hms.check_headroom_affinity u:object_r:hint_manager_config_prop:s0 exact bool
+persist.hms.check_headroom_proc_stat_min_millis u:object_r:hint_manager_config_prop:s0 exact int
+persist.hms.cpu_headroom_tid_max_cnt u:object_r:hint_manager_config_prop:s0 exact int
+
# Properties for ThreadNetworkService
threadnetwork.country_code u:object_r:threadnetwork_config_prop:s0 exact string