sepolicy: adding vendor prefix to avoid naming colision
Update legacy properties with vendor prefix to void VTS failure due to API30 changes CRs-Fixed: 2825382 Change-Id: I39a5de4ad6450d805bf74e88aabc38c8347d89a4
This commit is contained in:
Eruvaram Kumar Raja Reddy
parent
9871e2edb6
commit
f997082943
49 changed files with 183 additions and 183 deletions
4
legacy/vendor/common/adsprpcd.te
vendored
4
legacy/vendor/common/adsprpcd.te
vendored
|
|
@ -38,8 +38,8 @@ allow adsprpcd xdsp_device:chr_file r_file_perms;
|
|||
# For reading dir/files on /dsp
|
||||
r_dir_file(adsprpcd, adsprpcd_file)
|
||||
|
||||
# For reading adsprpc_prop
|
||||
get_prop(adsprpcd, adsprpc_prop)
|
||||
# For reading vendor_adsprpc_prop
|
||||
get_prop(adsprpcd, vendor_adsprpc_prop)
|
||||
|
||||
allow adsprpcd ion_device:chr_file r_file_perms;
|
||||
allow adsprpcd mnt_vendor_file:dir r_dir_perms;
|
||||
|
|
|
|||
6
legacy/vendor/common/app.te
vendored
6
legacy/vendor/common/app.te
vendored
|
|
@ -28,9 +28,9 @@
|
|||
#Allow all apps to open and send ioctl to qdsp device
|
||||
allow appdomain qdsp_device:chr_file r_file_perms;
|
||||
|
||||
get_prop(appdomain, hwui_prop)
|
||||
get_prop(appdomain, bservice_prop)
|
||||
get_prop(appdomain, reschedule_service_prop)
|
||||
get_prop(appdomain, vendor_hwui_prop)
|
||||
get_prop(appdomain, vendor_bservice_prop)
|
||||
get_prop(appdomain, vendor_reschedule_service_prop)
|
||||
get_prop(appdomain, vendor_iop_prop)
|
||||
get_prop(appdomain, vendor_scroll_prop)
|
||||
|
||||
|
|
|
|||
4
legacy/vendor/common/cameraserver.te
vendored
4
legacy/vendor/common/cameraserver.te
vendored
|
|
@ -48,8 +48,8 @@ allow cameraserver qdsp_device:chr_file r_file_perms;
|
|||
allow cameraserver xdsp_device:chr_file r_file_perms;
|
||||
get_prop(cameraserver, camera_prop)
|
||||
|
||||
#allow cameraserver to read adsprpc_prop
|
||||
get_prop(cameraserver, adsprpc_prop)
|
||||
#allow cameraserver to read vendor_adsprpc_prop
|
||||
get_prop(cameraserver, vendor_adsprpc_prop)
|
||||
|
||||
#need this in full_treble for camera perview
|
||||
allow cameraserver hal_allocator:fd use;
|
||||
|
|
|
|||
4
legacy/vendor/common/cdsprpcd.te
vendored
4
legacy/vendor/common/cdsprpcd.te
vendored
|
|
@ -35,8 +35,8 @@ init_daemon_domain(cdsprpcd)
|
|||
# For reading dir/files on /dsp
|
||||
r_dir_file(cdsprpcd, adsprpcd_file)
|
||||
|
||||
# For reading adsprpc_prop
|
||||
get_prop(cdsprpcd, adsprpc_prop)
|
||||
# For reading vendor_adsprpc_prop
|
||||
get_prop(cdsprpcd, vendor_adsprpc_prop)
|
||||
|
||||
allow cdsprpcd qdsp_device:chr_file r_file_perms;
|
||||
allow cdsprpcd ion_device:chr_file r_file_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/chre.te
vendored
2
legacy/vendor/common/chre.te
vendored
|
|
@ -33,7 +33,7 @@ type chre_exec, exec_type, vendor_file_type, file_type;
|
|||
|
||||
init_daemon_domain(chre)
|
||||
r_dir_file(chre, adsprpcd_file)
|
||||
get_prop(chre, adsprpc_prop)
|
||||
get_prop(chre, vendor_adsprpc_prop)
|
||||
|
||||
allow chre ion_device:chr_file r_file_perms;
|
||||
allow chre qdsp_device:chr_file r_file_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/cnd.te
vendored
2
legacy/vendor/common/cnd.te
vendored
|
|
@ -61,7 +61,7 @@ allow cnd self:{
|
|||
allow cnd self:netlink_tcpdiag_socket nlmsg_read;
|
||||
|
||||
# allow cnd to set cnd property
|
||||
set_prop(cnd, cnd_vendor_prop)
|
||||
set_prop(cnd, vendor_cnd_vendor_prop)
|
||||
|
||||
# allow cnd to access cnd_data_file
|
||||
allow cnd cnd_data_file:file create_file_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/dataservice_app.te
vendored
2
legacy/vendor/common/dataservice_app.te
vendored
|
|
@ -25,7 +25,7 @@
|
|||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
get_prop(vendor_dataservice_app, cnd_vendor_prop)
|
||||
get_prop(vendor_dataservice_app, vendor_cnd_vendor_prop)
|
||||
|
||||
allow vendor_dataservice_app sysfs_data:file r_file_perms;
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/common/domain.te
vendored
2
legacy/vendor/common/domain.te
vendored
|
|
@ -62,7 +62,7 @@ allowxperm domain domain:icmp_socket ioctl { unpriv_sock_ioctls unpriv_tty_ioctl
|
|||
# For compliance testing test suite reads vendor_security_path_level
|
||||
# Which is the public readable property “ ro.vendor.build.security_patch
|
||||
get_prop(domain, vendor_security_patch_level_prop)
|
||||
get_prop(domain, public_vendor_default_prop)
|
||||
get_prop(domain, vendor_public_vendor_default_prop)
|
||||
|
||||
allow domain qti_debugfs:dir search;
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/common/dspservice.te
vendored
2
legacy/vendor/common/dspservice.te
vendored
|
|
@ -47,7 +47,7 @@ hal_attribute_hwservice(vendor_hal_dspmanager, vendor_hal_dspmanager_hwservice)
|
|||
r_dir_file(vendor_dspservice, adsprpcd_file)
|
||||
|
||||
# For reading "vendor.fastrpc." properties
|
||||
get_prop(vendor_dspservice, adsprpc_prop)
|
||||
get_prop(vendor_dspservice, vendor_adsprpc_prop)
|
||||
|
||||
# Allow access to adsprpc secure and non-secure devices
|
||||
allow vendor_dspservice qdsp_device:chr_file r_file_perms;
|
||||
|
|
|
|||
4
legacy/vendor/common/hal_camera.te
vendored
4
legacy/vendor/common/hal_camera.te
vendored
|
|
@ -79,7 +79,7 @@ allow hal_camera qdsp_device:chr_file r_file_perms;
|
|||
|
||||
#allow camera to access /dsp
|
||||
r_dir_file(hal_camera, adsprpcd_file);
|
||||
#allow camera to access adsprpc_prop
|
||||
get_prop(hal_camera, adsprpc_prop)
|
||||
#allow camera to access vendor_adsprpc_prop
|
||||
get_prop(hal_camera, vendor_adsprpc_prop)
|
||||
|
||||
allow hal_camera_default mm-qcamerad:unix_dgram_socket sendto;
|
||||
|
|
|
|||
|
|
@ -31,7 +31,7 @@ hal_server_domain(vendor_hal_factory_qti_default, vendor_hal_factory_qti)
|
|||
type vendor_hal_factory_qti_default_exec, exec_type, vendor_file_type, file_type;
|
||||
init_daemon_domain(vendor_hal_factory_qti_default)
|
||||
|
||||
set_prop(vendor_hal_factory_qti, ctl_vendor_mmid_prop)
|
||||
set_prop(vendor_hal_factory_qti, vendor_ctl_vendor_mmid_prop)
|
||||
|
||||
# Allow read/write to mmi socket
|
||||
allow vendor_hal_factory_qti vendor_mmi_socket:sock_file rw_file_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_gatekeeper_qti.te
vendored
2
legacy/vendor/common/hal_gatekeeper_qti.te
vendored
|
|
@ -45,4 +45,4 @@ allow hal_gatekeeper_qti skp_device:chr_file rw_file_perms;
|
|||
allow hal_gatekeeper_qti sp_keymaster_device:chr_file rw_file_perms;
|
||||
allow hal_gatekeeper_qti sp_ssr_device:chr_file rw_file_perms;
|
||||
|
||||
get_prop(hal_gatekeeper_qti, spcomlib_prop)
|
||||
get_prop(hal_gatekeeper_qti, vendor_spcomlib_prop)
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_imsrtp.te
vendored
2
legacy/vendor/common/hal_imsrtp.te
vendored
|
|
@ -58,6 +58,6 @@ allow hal_imsrtp ion_device:chr_file r_file_perms;
|
|||
|
||||
allow hal_imsrtp sysfs_data:file r_file_perms;
|
||||
|
||||
get_prop(hal_imsrtp, qcom_ims_prop)
|
||||
get_prop(hal_imsrtp, vendor_qcom_ims_prop)
|
||||
|
||||
binder_call(hal_imsrtp, vendor_qtelephony)
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_keymaster_qti.te
vendored
2
legacy/vendor/common/hal_keymaster_qti.te
vendored
|
|
@ -44,4 +44,4 @@ allow hal_keymaster_qti skp_device:chr_file rw_file_perms;
|
|||
allow hal_keymaster_qti sp_keymaster_device:chr_file rw_file_perms;
|
||||
allow hal_keymaster_qti sp_ssr_device:chr_file rw_file_perms;
|
||||
|
||||
get_prop(hal_keymaster_qti, spcomlib_prop)
|
||||
get_prop(hal_keymaster_qti, vendor_spcomlib_prop)
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_neuralnetworks.te
vendored
2
legacy/vendor/common/hal_neuralnetworks.te
vendored
|
|
@ -43,4 +43,4 @@ allow hal_neuralnetworks_default hal_neuralnetworks_data_file:{ file fifo_file }
|
|||
allow hal_neuralnetworks_default gpu_device:chr_file rw_file_perms;
|
||||
|
||||
r_dir_file(hal_neuralnetworks_default, adsprpcd_file)
|
||||
get_prop(hal_neuralnetworks_default, adsprpc_prop)
|
||||
get_prop(hal_neuralnetworks_default, vendor_adsprpc_prop)
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_nfc.te
vendored
2
legacy/vendor/common/hal_nfc.te
vendored
|
|
@ -26,7 +26,7 @@
|
|||
#IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
# Set NFC properties
|
||||
set_prop(hal_nfc, nfc_nq_prop)
|
||||
set_prop(hal_nfc, vendor_nfc_nq_prop)
|
||||
|
||||
#Allow access to firmware
|
||||
allow hal_nfc firmware_file:dir r_dir_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_perf_default.te
vendored
2
legacy/vendor/common/hal_perf_default.te
vendored
|
|
@ -41,7 +41,7 @@ allow hal_perf_client hal_perf_hwservice:hwservice_manager find;
|
|||
allow hal_perf_default cgroup:file r_file_perms;
|
||||
allow hal_perf_default proc:file rw_file_perms;
|
||||
allow hal_perf device_latency:chr_file rw_file_perms;
|
||||
get_prop(hal_perf, freq_prop)
|
||||
get_prop(hal_perf, vendor_freq_prop)
|
||||
get_prop(hal_perf, vendor_mpctl_prop)
|
||||
allow hal_perf_default mpctl_data_file:dir rw_dir_perms;
|
||||
allow hal_perf_default mpctl_data_file:file create_file_perms;
|
||||
|
|
|
|||
6
legacy/vendor/common/hal_rcsservice.te
vendored
6
legacy/vendor/common/hal_rcsservice.te
vendored
|
|
@ -41,7 +41,7 @@ add_hwservice(hal_rcsservice, hal_imscallinfo_hwservice)
|
|||
#add imsfactory to HIDl interface
|
||||
add_hwservice(hal_rcsservice, vendor_hal_imsfactory_hwservice)
|
||||
# allow read datad property
|
||||
get_prop(hal_rcsservice, qcom_ims_prop)
|
||||
get_prop(hal_rcsservice, vendor_qcom_ims_prop)
|
||||
|
||||
# allow imsrcsd to connect to imsdatad over socket
|
||||
allow hal_rcsservice self: { socket qipcrtr_socket } create_socket_perms;
|
||||
|
|
@ -65,5 +65,5 @@ userdebug_or_eng(`
|
|||
binder_call(hal_rcsservice, radio)
|
||||
')
|
||||
|
||||
set_prop(hal_rcsservice, ctl_vendor_imsrcsservice_prop)
|
||||
set_prop(hal_rcsservice, qcom_ims_prop)
|
||||
set_prop(hal_rcsservice, vendor_ctl_vendor_imsrcsservice_prop)
|
||||
set_prop(hal_rcsservice, vendor_qcom_ims_prop)
|
||||
|
|
|
|||
2
legacy/vendor/common/hal_sensors.te
vendored
2
legacy/vendor/common/hal_sensors.te
vendored
|
|
@ -30,7 +30,7 @@ userdebug_or_eng(`
|
|||
diag_use(hal_sensors)
|
||||
allow hal_sensors debugfs_tracing:file { open write };
|
||||
')
|
||||
set_prop(hal_sensors, slpi_prop);
|
||||
set_prop(hal_sensors, vendor_slpi_prop);
|
||||
allow hal_sensors self:{ socket qipcrtr_socket } create_socket_perms;
|
||||
allowxperm hal_sensors self:{ socket qipcrtr_socket } ioctl msm_sock_ipc_ioctls;
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/common/hbtp.te
vendored
2
legacy/vendor/common/hbtp.te
vendored
|
|
@ -68,7 +68,7 @@ allow hbtp self:capability { setgid setuid };
|
|||
|
||||
# Allow load touch driver as touchPD
|
||||
r_dir_file(hbtp, adsprpcd_file)
|
||||
get_prop(hbtp, adsprpc_prop)
|
||||
get_prop(hbtp, vendor_adsprpc_prop)
|
||||
|
||||
# Allow the service to access wakelock capability
|
||||
wakelock_use(hbtp)
|
||||
|
|
|
|||
2
legacy/vendor/common/hvdcp.te
vendored
2
legacy/vendor/common/hvdcp.te
vendored
|
|
@ -71,6 +71,6 @@ allow hvdcp mnt_vendor_file:dir search;
|
|||
allow hvdcp persist_hvdcp_file:dir rw_dir_perms;
|
||||
allow hvdcp persist_hvdcp_file:file create_file_perms;
|
||||
|
||||
set_prop(hvdcp, hvdcp_opti_prop)
|
||||
set_prop(hvdcp, vendor_hvdcp_opti_prop)
|
||||
|
||||
wakelock_use(hvdcp)
|
||||
|
|
|
|||
8
legacy/vendor/common/ims.te
vendored
8
legacy/vendor/common/ims.te
vendored
|
|
@ -59,8 +59,8 @@ allow ims {
|
|||
# Talk to qumuxd via ims_socket
|
||||
unix_socket_connect(ims, ims, qmuxd)
|
||||
|
||||
set_prop(ims, qcom_ims_prop)
|
||||
set_prop(ims, ctl_vendor_imsrcsservice_prop)
|
||||
set_prop(ims, vendor_qcom_ims_prop)
|
||||
set_prop(ims, vendor_ctl_vendor_imsrcsservice_prop)
|
||||
|
||||
# permissions for communication with CNE in LBO use case
|
||||
unix_socket_connect(ims, cnd, cnd)
|
||||
|
|
@ -83,7 +83,7 @@ allowxperm ims self:udp_socket ioctl priv_sock_ioctls;
|
|||
allow ims sysfs_data:file r_file_perms;
|
||||
hwbinder_use(ims)
|
||||
get_prop(ims, hwservicemanager_prop)
|
||||
get_prop(ims, qcom_ims_prop)
|
||||
get_prop(ims, cnd_vendor_prop)
|
||||
get_prop(ims, vendor_qcom_ims_prop)
|
||||
get_prop(ims, vendor_cnd_vendor_prop)
|
||||
allow ims hal_datafactory_hwservice:hwservice_manager find;
|
||||
binder_call(ims, cnd)
|
||||
|
|
|
|||
2
legacy/vendor/common/init-qti-ims-sh.te
vendored
2
legacy/vendor/common/init-qti-ims-sh.te
vendored
|
|
@ -33,7 +33,7 @@ init_daemon_domain(init-qti-ims-sh)
|
|||
allow init-qti-ims-sh vendor_shell_exec:file rx_file_perms;
|
||||
allow init-qti-ims-sh vendor_toolbox_exec:file rx_file_perms;
|
||||
|
||||
set_prop(init-qti-ims-sh, qcom_ims_prop)
|
||||
set_prop(init-qti-ims-sh, vendor_qcom_ims_prop)
|
||||
|
||||
# for ro.build.product
|
||||
get_prop(init-qti-ims-sh, exported2_default_prop)
|
||||
|
|
|
|||
40
legacy/vendor/common/init_shell.te
vendored
40
legacy/vendor/common/init_shell.te
vendored
|
|
@ -75,31 +75,31 @@ allow qti_init_shell self:capability {
|
|||
};
|
||||
|
||||
# For property starting with hw
|
||||
# freq_prop - for setting frequency from postboot script
|
||||
# vendor_freq_prop - for setting frequency from postboot script
|
||||
# vendor_mpctl_prop - for setting ctl.mpdecision property from postboot script
|
||||
# vendor_bluetooth_prop - for setting bt related properties from postboot script
|
||||
# ctl_vendor_qmuxd_prop/ctl_vendor_netmgrd_prop - Needed in order to set properties on qmuxd and netmgrd processes
|
||||
set_prop(qti_init_shell, freq_prop)
|
||||
set_prop(qti_init_shell, vendor_freq_prop)
|
||||
set_prop(qti_init_shell, vendor_mpctl_prop)
|
||||
set_prop(qti_init_shell, vendor_bluetooth_prop)
|
||||
set_prop(qti_init_shell, sensors_prop)
|
||||
set_prop(qti_init_shell, vendor_sensors_prop)
|
||||
set_prop(qti_init_shell, vendor_msm_irqbalance_prop)
|
||||
set_prop(qti_init_shell, vendor_msm_irqbl_sdm630_prop)
|
||||
set_prop(qti_init_shell, vendor_ipacm_prop)
|
||||
set_prop(qti_init_shell, vendor_ipacm-diag_prop)
|
||||
set_prop(qti_init_shell, vendor_dataqti_prop)
|
||||
set_prop(qti_init_shell, vendor_dataadpl_prop)
|
||||
#set_prop(qti_init_shell, ctl_rildaemon_prop)
|
||||
set_prop(qti_init_shell, ctl_qcrild_prop)
|
||||
set_prop(qti_init_shell, ctl_vendor_rild_prop)
|
||||
set_prop(qti_init_shell, ctl_vendor_qmuxd_prop)
|
||||
set_prop(qti_init_shell, ctl_vendor_netmgrd_prop)
|
||||
set_prop(qti_init_shell, ctl_vendor_port-bridge_prop)
|
||||
#set_prop(qti_init_shell, vendor_ctl_rildaemon_prop)
|
||||
set_prop(qti_init_shell, vendor_ctl_qcrild_prop)
|
||||
set_prop(qti_init_shell, vendor_ctl_vendor_rild_prop)
|
||||
set_prop(qti_init_shell, vendor_ctl_vendor_qmuxd_prop)
|
||||
set_prop(qti_init_shell, vendor_ctl_vendor_netmgrd_prop)
|
||||
set_prop(qti_init_shell, vendor_ctl_vendor_port-bridge_prop)
|
||||
set_prop(qti_init_shell, vendor_display_prop)
|
||||
set_prop(qti_init_shell, scr_enabled_prop)
|
||||
set_prop(qti_init_shell, vendor_scr_enabled_prop)
|
||||
set_prop(qti_init_shell, vendor_opengles_prop)
|
||||
set_prop(qti_init_shell, vendor_mdm_helper_prop)
|
||||
set_prop(qti_init_shell, fm_prop)
|
||||
set_prop(qti_init_shell, vendor_fm_prop)
|
||||
set_prop(qti_init_shell, vendor_alarm_boot_prop)
|
||||
set_prop(qti_init_shell, vendor_gralloc_prop)
|
||||
set_prop(qti_init_shell, vendor_audio_prop)
|
||||
|
|
@ -116,16 +116,16 @@ set_prop(vendor_qti_init_shell,vendor_dcvs_prop)
|
|||
set_prop(qti_init_shell, vendor_vm_bms_prop)
|
||||
set_prop(qti_init_shell, vendor_usb_prop)
|
||||
#Needed for setting hwui properties in post_boot
|
||||
set_prop(qti_init_shell, hwui_prop)
|
||||
set_prop(qti_init_shell, graphics_vulkan_prop)
|
||||
set_prop(qti_init_shell, vendor_hwui_prop)
|
||||
set_prop(qti_init_shell, vendor_graphics_vulkan_prop)
|
||||
#Needed for setting vendor_cgroup_follow properties from post_boot
|
||||
set_prop(qti_init_shell, vendor_cgroup_follow_prop)
|
||||
#Needed for setting bservice properties from post_boot
|
||||
set_prop(qti_init_shell, bservice_prop)
|
||||
set_prop(qti_init_shell, vendor_bservice_prop)
|
||||
#Needed for setting DSR properties from post_boot
|
||||
set_prop(qti_init_shell, reschedule_service_prop)
|
||||
set_prop(qti_init_shell, vendor_reschedule_service_prop)
|
||||
#Needed for setting hvdcp properties from post_boot
|
||||
set_prop(qti_init_shell, hvdcp_opti_prop)
|
||||
set_prop(qti_init_shell, vendor_hvdcp_opti_prop)
|
||||
|
||||
get_prop(qti_init_shell, exported3_radio_prop)
|
||||
set_prop(qti_init_shell, vendor_gpu_prop)
|
||||
|
|
@ -224,7 +224,7 @@ allow qti_init_shell vendor_mbn_data_file:dir create_dir_perms;
|
|||
allow qti_init_shell vendor_mbn_data_file:file create_file_perms;
|
||||
|
||||
set_prop(qti_init_shell, vendor_rild_libpath_prop);
|
||||
set_prop(qti_init_shell, ctl_vendor_hbtp_prop)
|
||||
set_prop(qti_init_shell, vendor_ctl_vendor_hbtp_prop)
|
||||
set_prop(qti_init_shell, vendor_radio_prop)
|
||||
|
||||
allow qti_init_shell fm_qsoc_patches_exec:file rx_file_perms;
|
||||
|
|
@ -277,8 +277,8 @@ allow qti_init_shell vendor_fm_data_file:dir ra_dir_perms;
|
|||
allow qti_init_shell sysfs_android_usb:dir r_dir_perms;
|
||||
allow qti_init_shell sysfs_android_usb:file rw_file_perms;
|
||||
|
||||
# allow read permisison for hvdcp_opti properties
|
||||
get_prop(qti_init_shell, hvdcp_opti_prop)
|
||||
# allow read permisison for vendor_hvdcp_opti properties
|
||||
get_prop(qti_init_shell, vendor_hvdcp_opti_prop)
|
||||
|
||||
#allow set permission for vendor.fastrpc properties
|
||||
set_prop(qti_init_shell, adsprpc_prop)
|
||||
set_prop(qti_init_shell, vendor_adsprpc_prop)
|
||||
|
|
|
|||
4
legacy/vendor/common/location.te
vendored
4
legacy/vendor/common/location.te
vendored
|
|
@ -103,7 +103,7 @@ unix_socket_send(location, wifihal, hal_wifi_default);
|
|||
netmgr_socket(location);
|
||||
|
||||
#Allow access to properties
|
||||
set_prop(location, location_prop);
|
||||
set_prop(location, vendor_location_prop);
|
||||
|
||||
#diag
|
||||
userdebug_or_eng(`
|
||||
|
|
@ -123,7 +123,7 @@ hal_client_domain(location, vendor_qccsyshal);
|
|||
|
||||
allow location hal_datafactory_hwservice:hwservice_manager find;
|
||||
binder_call(location, cnd)
|
||||
get_prop(location, cnd_vendor_prop)
|
||||
get_prop(location, vendor_cnd_vendor_prop)
|
||||
|
||||
#Allow access to wake alarm
|
||||
allow location self:capability2 wake_alarm;
|
||||
|
|
|
|||
2
legacy/vendor/common/mediacodec.te
vendored
2
legacy/vendor/common/mediacodec.te
vendored
|
|
@ -28,7 +28,7 @@
|
|||
#mediacodec need intraction with audio device nodes
|
||||
allow mediacodec msm_aac_in_device:chr_file rw_file_perms;
|
||||
|
||||
get_prop(mediacodec, adsprpc_prop)
|
||||
get_prop(mediacodec, vendor_adsprpc_prop)
|
||||
|
||||
#Allow mediacodec to access proc_net files
|
||||
allow mediacodec proc_net:file r_file_perms;
|
||||
|
|
|
|||
4
legacy/vendor/common/mediaserver.te
vendored
4
legacy/vendor/common/mediaserver.te
vendored
|
|
@ -50,8 +50,8 @@ r_dir_file(mediaserver, sysfs_thermal);
|
|||
|
||||
binder_call(mediaserver, wfdservice)
|
||||
|
||||
#allow mediaserver to access adsprpc_prop
|
||||
get_prop(mediaserver, adsprpc_prop)
|
||||
#allow mediaserver to access vendor_adsprpc_prop
|
||||
get_prop(mediaserver, vendor_adsprpc_prop)
|
||||
|
||||
binder_call(mediaserver, bootanim);
|
||||
|
||||
|
|
|
|||
4
legacy/vendor/common/mm-qcamerad.te
vendored
4
legacy/vendor/common/mm-qcamerad.te
vendored
|
|
@ -79,8 +79,8 @@ allow mm-qcamerad xdsp_device:chr_file rw_file_perms;
|
|||
|
||||
#allow mm-qcamerad to access /dsp
|
||||
r_dir_file(mm-qcamerad, adsprpcd_file);
|
||||
#allow mm-qcamerad to access adsprpc_prop
|
||||
get_prop(mm-qcamerad, adsprpc_prop)
|
||||
#allow mm-qcamerad to access vendor_adsprpc_prop
|
||||
get_prop(mm-qcamerad, vendor_adsprpc_prop)
|
||||
|
||||
r_dir_file(mm-qcamerad, firmware_file)
|
||||
allow mm-qcamerad graphics_device:dir r_dir_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/nfc.te
vendored
2
legacy/vendor/common/nfc.te
vendored
|
|
@ -26,7 +26,7 @@
|
|||
#IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
# Set NFC properties
|
||||
get_prop(nfc, nfc_nq_prop)
|
||||
get_prop(nfc, vendor_nfc_nq_prop)
|
||||
#qmux_socket(nfc);
|
||||
#allow nfc nfc_data_file:file x_file_perms;
|
||||
allow nfc self:socket create_socket_perms_no_ioctl;
|
||||
|
|
|
|||
2
legacy/vendor/common/nqnfcinfo.te
vendored
2
legacy/vendor/common/nqnfcinfo.te
vendored
|
|
@ -31,7 +31,7 @@ type nqnfcinfo_exec, exec_type, vendor_file_type, file_type;
|
|||
# Started by init
|
||||
init_daemon_domain(nqnfcinfo)
|
||||
|
||||
set_prop(nqnfcinfo, nfc_nq_prop);
|
||||
set_prop(nqnfcinfo, vendor_nfc_nq_prop);
|
||||
|
||||
# Access device nodes inside /dev/nq-nci
|
||||
allow nqnfcinfo nfc_device:chr_file rw_file_perms;
|
||||
|
|
|
|||
62
legacy/vendor/common/property.te
vendored
62
legacy/vendor/common/property.te
vendored
|
|
@ -26,40 +26,40 @@
|
|||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
# property for uicc_daemon
|
||||
type qcom_ims_prop, property_type;
|
||||
type ctl_vendor_qmuxd_prop, property_type;
|
||||
type ctl_vendor_netmgrd_prop, property_type;
|
||||
type ctl_vendor_port-bridge_prop, property_type;
|
||||
type ctl_qcrild_prop, property_type;
|
||||
type vendor_qcom_ims_prop, property_type;
|
||||
type vendor_ctl_vendor_qmuxd_prop, property_type;
|
||||
type vendor_ctl_vendor_netmgrd_prop, property_type;
|
||||
type vendor_ctl_vendor_port-bridge_prop, property_type;
|
||||
type vendor_ctl_qcrild_prop, property_type;
|
||||
type vendor_tee_listener_prop, property_type;
|
||||
type ctl_vendor_rild_prop, property_type;
|
||||
type vendor_ctl_vendor_rild_prop, property_type;
|
||||
|
||||
# property for LKCore ctl start
|
||||
type ctl_LKCore_prop, property_type;
|
||||
type vendor_ctl_LKCore_prop, property_type;
|
||||
|
||||
type freq_prop, property_type;
|
||||
type vendor_freq_prop, property_type;
|
||||
type vendor_vm_bms_prop, property_type; #To start vm_bms
|
||||
type vendor_dataqti_prop, property_type;
|
||||
type vendor_dataadpl_prop, property_type;
|
||||
type vendor_dataqdp_prop, property_type;
|
||||
type vendor_ipacm_prop, property_type;
|
||||
type vendor_ipacm-diag_prop, property_type;
|
||||
type cnd_vendor_prop, property_type;
|
||||
type sensors_prop, property_type;
|
||||
type slpi_prop, property_type;
|
||||
type vendor_cnd_vendor_prop, property_type;
|
||||
type vendor_sensors_prop, property_type;
|
||||
type vendor_slpi_prop, property_type;
|
||||
type vendor_msm_irqbalance_prop, property_type;
|
||||
type vendor_msm_irqbl_sdm630_prop, property_type;
|
||||
type camera_prop, property_type;
|
||||
type spcomlib_prop, property_type;
|
||||
type vendor_spcomlib_prop, property_type;
|
||||
type vendor_display_prop, property_type;
|
||||
type scr_enabled_prop, property_type;
|
||||
type bg_daemon_prop, property_type;
|
||||
type bg_boot_complete_prop, property_type;
|
||||
type vendor_scr_enabled_prop, property_type;
|
||||
type vendor_bg_daemon_prop, property_type;
|
||||
type vendor_bg_boot_complete_prop, property_type;
|
||||
type vendor_opengles_prop, property_type;
|
||||
type vendor_mdm_helper_prop, property_type;
|
||||
type vendor_mpctl_prop, property_type;
|
||||
type vendor_iop_prop, property_type;
|
||||
type public_vendor_default_prop, property_type;
|
||||
type vendor_public_vendor_default_prop, property_type;
|
||||
#Scroll Pre-obtain
|
||||
type vendor_scroll_prop, property_type;
|
||||
|
||||
|
|
@ -69,13 +69,13 @@ type vendor_am_prop, property_type;
|
|||
#Needed for ubwc support
|
||||
type vendor_gralloc_prop, property_type;
|
||||
|
||||
type fm_prop, property_type;
|
||||
type vendor_fm_prop, property_type;
|
||||
type chgdiabled_prop, property_type;
|
||||
|
||||
vendor_restricted_prop(vendor_xlat_prop);
|
||||
|
||||
# property for location
|
||||
type location_prop, property_type;
|
||||
type vendor_location_prop, property_type;
|
||||
|
||||
#properites for init.qcom.sh script
|
||||
type vendor_usb_prop, property_type;
|
||||
|
|
@ -90,26 +90,26 @@ type vendor_wifi_ftmd_prop, property_type;
|
|||
|
||||
# WIGIG
|
||||
type vendor_wigig_prop, property_type;
|
||||
type ctl_vendor_wigigsvc_prop, property_type;
|
||||
type vendor_ctl_vendor_wigigsvc_prop, property_type;
|
||||
|
||||
#HWUI property
|
||||
type hwui_prop, property_type;
|
||||
type vendor_hwui_prop, property_type;
|
||||
|
||||
type graphics_vulkan_prop, property_type;
|
||||
type vendor_graphics_vulkan_prop, property_type;
|
||||
|
||||
#cgroup follow
|
||||
type vendor_cgroup_follow_prop, property_type;
|
||||
|
||||
#Bservice property
|
||||
type bservice_prop, property_type;
|
||||
type vendor_bservice_prop, property_type;
|
||||
|
||||
#Delayed Service Reschedule property
|
||||
type reschedule_service_prop, property_type;
|
||||
type vendor_reschedule_service_prop, property_type;
|
||||
|
||||
#boot mode property
|
||||
type vendor_boot_mode_prop, property_type;
|
||||
#properties for nfc
|
||||
type nfc_nq_prop, property_type;
|
||||
type vendor_nfc_nq_prop, property_type;
|
||||
|
||||
type vendor_rild_libpath_prop, property_type;
|
||||
|
||||
|
|
@ -122,17 +122,17 @@ type vendor_system_prop, property_type;
|
|||
type vendor_bluetooth_prop, property_type;
|
||||
|
||||
# HBTP
|
||||
type ctl_vendor_hbtp_prop, property_type;
|
||||
type vendor_ctl_vendor_hbtp_prop, property_type;
|
||||
|
||||
# factory properties
|
||||
type ctl_vendor_mmid_prop, property_type;
|
||||
type vendor_ctl_vendor_mmid_prop, property_type;
|
||||
|
||||
#qcc property
|
||||
#type vendor_qdma_prop, property_type;
|
||||
vendor_public_prop(vendor_qcc_prop);
|
||||
|
||||
#imsrcsservice
|
||||
type ctl_vendor_imsrcsservice_prop, property_type;
|
||||
type vendor_ctl_vendor_imsrcsservice_prop, property_type;
|
||||
|
||||
#mmi
|
||||
type vendor_mmi_prop, property_type;
|
||||
|
|
@ -163,19 +163,19 @@ type vendor_softap_prop, property_type;
|
|||
type vendor_video_prop, property_type;
|
||||
|
||||
#rmt_storage
|
||||
type ctl_vendor_rmt_storage_prop, property_type;
|
||||
type vendor_ctl_vendor_rmt_storage_prop, property_type;
|
||||
|
||||
type vendor_gpu_prop, property_type;
|
||||
|
||||
type vendor_data_ko_prop, property_type;
|
||||
|
||||
#hvdcp_opti
|
||||
type hvdcp_opti_prop, property_type;
|
||||
type vendor_hvdcp_opti_prop, property_type;
|
||||
#adsprpc props
|
||||
type adsprpc_prop, property_type;
|
||||
type vendor_adsprpc_prop, property_type;
|
||||
|
||||
#qvr property
|
||||
type qvr_prop, property_type;
|
||||
type vendor_qvr_prop, property_type;
|
||||
|
||||
#capabilityconfigstore hal (CCHAL)
|
||||
type vendor_cap_configstore_dbg_prop, property_type;
|
||||
|
|
|
|||
126
legacy/vendor/common/property_contexts
vendored
126
legacy/vendor/common/property_contexts
vendored
|
|
@ -32,41 +32,41 @@ persist.vendor.qcom.bluetooth. u:object_r:vendor_bluetooth_prop:s0
|
|||
vendor.qcom.bluetooth. u:object_r:vendor_bluetooth_prop:s0
|
||||
vendor.wc_transport. u:object_r:vendor_bluetooth_prop:s0
|
||||
ro.vendor.bluetooth. u:object_r:vendor_bluetooth_prop:s0
|
||||
vendor.ims. u:object_r:qcom_ims_prop:s0
|
||||
ro.vendor.build.software.version u:object_r:qcom_ims_prop:s0
|
||||
persist.vendor.ims. u:object_r:qcom_ims_prop:s0
|
||||
persist.vendor.qti.telephony.vt_cam_interface u:object_r:qcom_ims_prop:s0
|
||||
vendor.hw.fm. u:object_r:fm_prop:s0
|
||||
ctl.vendor.qmuxd u:object_r:ctl_vendor_qmuxd_prop:s0
|
||||
ctl.vendor.netmgrd u:object_r:ctl_vendor_netmgrd_prop:s0
|
||||
ctl.vendor.port-bridge u:object_r:ctl_vendor_port-bridge_prop:s0
|
||||
ctl.vendor.qcrild u:object_r:ctl_qcrild_prop:s0
|
||||
ctl.vendor.ril-daemon u:object_r:ctl_vendor_rild_prop:s0
|
||||
ctl.vendor.cnd u:object_r:cnd_vendor_prop:s0
|
||||
persist.vendor.sys.cnd u:object_r:cnd_vendor_prop:s0
|
||||
persist.vendor.cne. u:object_r:cnd_vendor_prop:s0
|
||||
persist.vendor.cne.feature u:object_r:cnd_vendor_prop:s0
|
||||
persist.vendor.cne.logging.qxdm u:object_r:cnd_vendor_prop:s0
|
||||
persist.vendor.cnd. u:object_r:cnd_vendor_prop:s0
|
||||
persist.vendor.cnd.wqe u:object_r:cnd_vendor_prop:s0
|
||||
vendor.ims. u:object_r:vendor_qcom_ims_prop:s0
|
||||
ro.vendor.build.software.version u:object_r:vendor_qcom_ims_prop:s0
|
||||
persist.vendor.ims. u:object_r:vendor_qcom_ims_prop:s0
|
||||
persist.vendor.qti.telephony.vt_cam_interface u:object_r:vendor_qcom_ims_prop:s0
|
||||
vendor.hw.fm. u:object_r:vendor_fm_prop:s0
|
||||
ctl.vendor.qmuxd u:object_r:vendor_ctl_vendor_qmuxd_prop:s0
|
||||
ctl.vendor.netmgrd u:object_r:vendor_ctl_vendor_netmgrd_prop:s0
|
||||
ctl.vendor.port-bridge u:object_r:vendor_ctl_vendor_port-bridge_prop:s0
|
||||
ctl.vendor.qcrild u:object_r:vendor_ctl_qcrild_prop:s0
|
||||
ctl.vendor.ril-daemon u:object_r:vendor_ctl_vendor_rild_prop:s0
|
||||
ctl.vendor.cnd u:object_r:vendor_cnd_vendor_prop:s0
|
||||
persist.vendor.sys.cnd u:object_r:vendor_cnd_vendor_prop:s0
|
||||
persist.vendor.cne. u:object_r:vendor_cnd_vendor_prop:s0
|
||||
persist.vendor.cne.feature u:object_r:vendor_cnd_vendor_prop:s0
|
||||
persist.vendor.cne.logging.qxdm u:object_r:vendor_cnd_vendor_prop:s0
|
||||
persist.vendor.cnd. u:object_r:vendor_cnd_vendor_prop:s0
|
||||
persist.vendor.cnd.wqe u:object_r:vendor_cnd_vendor_prop:s0
|
||||
ctl.vendor.vm_bms u:object_r:vendor_vm_bms_prop:s0
|
||||
ro.vendor.qualcomm.bluetooth. u:object_r:vendor_bluetooth_prop:s0
|
||||
ctl.vendor.ipacm u:object_r:vendor_ipacm_prop:s0
|
||||
ctl.vendor.ipacm-diag u:object_r:vendor_ipacm-diag_prop:s0
|
||||
ctl.vendor.dataqti u:object_r:vendor_dataqti_prop:s0
|
||||
ctl.vendor.dataadpl u:object_r:vendor_dataadpl_prop:s0
|
||||
ctl.vendor.sensors u:object_r:sensors_prop:s0
|
||||
ctl.vendor.sensors u:object_r:vendor_sensors_prop:s0
|
||||
ctl.vendor.msm_irqbalance u:object_r:vendor_msm_irqbalance_prop:s0
|
||||
ctl.vendor.msm_irqbl_sdm630 u:object_r:vendor_msm_irqbl_sdm630_prop:s0
|
||||
vendor.slpi. u:object_r:slpi_prop:s0
|
||||
vendor.slpi. u:object_r:vendor_slpi_prop:s0
|
||||
ctl.vendor.msm_irqbal_lb u:object_r:vendor_msm_irqbalance_prop:s0
|
||||
vendor.spcom. u:object_r:spcomlib_prop:s0
|
||||
vendor.spcom. u:object_r:vendor_spcomlib_prop:s0
|
||||
vendor.display. u:object_r:vendor_display_prop:s0
|
||||
ro.vendor.display. u:object_r:vendor_display_prop:s0
|
||||
persist.vendor.display. u:object_r:vendor_display_prop:s0
|
||||
ro.vendor.scr_enabled u:object_r:scr_enabled_prop:s0
|
||||
vendor.bg_reset u:object_r:bg_daemon_prop:s0
|
||||
vendor.bg.boot_complete u:object_r:bg_boot_complete_prop:s0
|
||||
ro.vendor.scr_enabled u:object_r:vendor_scr_enabled_prop:s0
|
||||
vendor.bg_reset u:object_r:vendor_bg_daemon_prop:s0
|
||||
vendor.bg.boot_complete u:object_r:vendor_bg_boot_complete_prop:s0
|
||||
vendor.opengles.version u:object_r:vendor_opengles_prop:s0
|
||||
ro.vendor.qualcomm.bt.hci_transport u:object_r:vendor_bluetooth_prop:s0
|
||||
ctl.vendor.mdm_helper u:object_r:vendor_mdm_helper_prop:s0
|
||||
|
|
@ -80,7 +80,7 @@ vendor.perf.iop_v3.enable u:object_r:vendor_iop_prop:s0
|
|||
vendor.perf.iop_v3.enable.debug u:object_r:vendor_iop_prop:s0
|
||||
vendor.iop.enable_prefetch_ofr u:object_r:vendor_iop_prop:s0
|
||||
vendor.perf.gestureflingboost.enable u:object_r:vendor_scroll_prop:s0
|
||||
vendor.qti.izat. u:object_r:location_prop:s0
|
||||
vendor.qti.izat. u:object_r:vendor_location_prop:s0
|
||||
vendor.usb. u:object_r:vendor_usb_prop:s0
|
||||
persist.vendor.usb. u:object_r:vendor_usb_prop:s0
|
||||
ro.vendor.dbg.coresight.cfg_file u:object_r:vendor_coresight_prop:s0
|
||||
|
|
@ -100,50 +100,50 @@ vendor.wifi.ftmd. u:object_r:vendor_wifi_ftmd_prop:s0
|
|||
|
||||
# WIGIG
|
||||
vendor.wigig. u:object_r:vendor_wigig_prop:s0
|
||||
ctl.vendor.wigig_supplicant u:object_r:ctl_vendor_wigigsvc_prop:s0
|
||||
ctl.vendor.wigig_hostapd u:object_r:ctl_vendor_wigigsvc_prop:s0
|
||||
ctl.vendor.wigig_supplicant u:object_r:vendor_ctl_vendor_wigigsvc_prop:s0
|
||||
ctl.vendor.wigig_hostapd u:object_r:vendor_ctl_vendor_wigigsvc_prop:s0
|
||||
|
||||
#HWUI Property
|
||||
ro.vendor.hwui.texture_cache_size u:object_r:hwui_prop:s0
|
||||
ro.vendor.hwui.texture_cache_size u:object_r:vendor_hwui_prop:s0
|
||||
# ActivityManager tuning properties
|
||||
ro.vendor.qti.sys.fw. u:object_r:vendor_am_prop:s0
|
||||
|
||||
# public_vendor_default_prop
|
||||
ro.vendor.graphics.memory u:object_r:public_vendor_default_prop:s0
|
||||
vendor.debug.egl.changepixelformat u:object_r:public_vendor_default_prop:s0
|
||||
vendor.debug.prerotation.disable u:object_r:public_vendor_default_prop:s0
|
||||
vendor.dump.gpu.output u:object_r:public_vendor_default_prop:s0
|
||||
vendor.debug.egl.swapinterval u:object_r:public_vendor_default_prop:s0
|
||||
vendor.debug.egl.profiler u:object_r:public_vendor_default_prop:s0
|
||||
vendor.debug.rs. u:object_r:public_vendor_default_prop:s0
|
||||
# vendor_public_vendor_default_prop
|
||||
ro.vendor.graphics.memory u:object_r:vendor_public_vendor_default_prop:s0
|
||||
vendor.debug.egl.changepixelformat u:object_r:vendor_public_vendor_default_prop:s0
|
||||
vendor.debug.prerotation.disable u:object_r:vendor_public_vendor_default_prop:s0
|
||||
vendor.dump.gpu.output u:object_r:vendor_public_vendor_default_prop:s0
|
||||
vendor.debug.egl.swapinterval u:object_r:vendor_public_vendor_default_prop:s0
|
||||
vendor.debug.egl.profiler u:object_r:vendor_public_vendor_default_prop:s0
|
||||
vendor.debug.rs. u:object_r:vendor_public_vendor_default_prop:s0
|
||||
|
||||
# cgroup follow
|
||||
ro.vendor.qti.cgroup_follow.enable u:object_r:vendor_cgroup_follow_prop:s0
|
||||
ro.vendor.qti.cgroup_follow.dex2oat_only u:object_r:vendor_cgroup_follow_prop:s0
|
||||
|
||||
#Bservice Property
|
||||
ro.vendor.qti.sys.fw.bservice_ u:object_r:bservice_prop:s0
|
||||
ro.vendor.qti.sys.fw.bservice_ u:object_r:vendor_bservice_prop:s0
|
||||
#Delayed Service Restart Property
|
||||
ro.vendor.qti.am.reschedule_service u:object_r:reschedule_service_prop:s0
|
||||
persist.vendor.graphics.vulkan.disable u:object_r:graphics_vulkan_prop:s0
|
||||
ro.vendor.qti.am.reschedule_service u:object_r:vendor_reschedule_service_prop:s0
|
||||
persist.vendor.graphics.vulkan.disable u:object_r:vendor_graphics_vulkan_prop:s0
|
||||
#boot mode property
|
||||
vendor.sys.boot_mode u:object_r:vendor_boot_mode_prop:s0
|
||||
# GPU
|
||||
ro.vendor.gpu.available_frequencies u:object_r:freq_prop:s0
|
||||
ro.vendor.gpu.available_frequencies u:object_r:vendor_freq_prop:s0
|
||||
# NFC
|
||||
vendor.qti.nfc. u:object_r:nfc_nq_prop:s0
|
||||
vendor.qti.nfc. u:object_r:vendor_nfc_nq_prop:s0
|
||||
# LKCore start
|
||||
ctl.vendor.LKCore-dbg u:object_r:ctl_LKCore_prop:s0
|
||||
ctl.vendor.LKCore-rel u:object_r:ctl_LKCore_prop:s0
|
||||
ctl.vendor.LKCore-dbg u:object_r:vendor_ctl_LKCore_prop:s0
|
||||
ctl.vendor.LKCore-rel u:object_r:vendor_ctl_LKCore_prop:s0
|
||||
vendor.rild.libpath u:object_r:vendor_rild_libpath_prop:s0
|
||||
# Peripheral Manager
|
||||
vendor.peripheral. u:object_r:vendor_per_mgr_state_prop:s0
|
||||
|
||||
# HBTP
|
||||
ctl.vendor.hbtp u:object_r:ctl_vendor_hbtp_prop:s0
|
||||
ctl.vendor.hbtp u:object_r:vendor_ctl_vendor_hbtp_prop:s0
|
||||
|
||||
# factory properties
|
||||
ctl.vendor.mmid u:object_r:ctl_vendor_mmid_prop:s0
|
||||
ctl.vendor.mmid u:object_r:vendor_ctl_vendor_mmid_prop:s0
|
||||
|
||||
# qcc property
|
||||
vendor.qti.qdma. u:object_r:vendor_qcc_prop:s0
|
||||
|
|
@ -151,7 +151,7 @@ vendor.qti.qdma. u:object_r:vendor_qcc_prop:s0
|
|||
#Needed by qsee need to rename this
|
||||
vendor.sys.listeners.registered u:object_r:vendor_tee_listener_prop:s0
|
||||
|
||||
ctl.vendor.imsrcsservice u:object_r:ctl_vendor_imsrcsservice_prop:s0
|
||||
ctl.vendor.imsrcsservice u:object_r:vendor_ctl_vendor_imsrcsservice_prop:s0
|
||||
|
||||
persist.vendor.mmi. u:object_r:vendor_mmi_prop:s0
|
||||
|
||||
|
|
@ -182,7 +182,7 @@ vendor.media.target.version u:object_r:vendor_video_prop:s0
|
|||
vendor.video.disable.ubwc u:object_r:vendor_video_prop:s0
|
||||
|
||||
#rmt_storage
|
||||
ctl.vendor.rmt_storage u:object_r:ctl_vendor_rmt_storage_prop:s0
|
||||
ctl.vendor.rmt_storage u:object_r:vendor_ctl_vendor_rmt_storage_prop:s0
|
||||
|
||||
#GPU Available frequencies
|
||||
vendor.gpu.available_frequencies u:object_r:vendor_gpu_prop:s0
|
||||
|
|
@ -194,27 +194,27 @@ persist.vendor.data.perf_ko_load u:object_r:vendor_data_ko_prop:s0
|
|||
persist.vendor.cap_configstore_debug u:object_r:vendor_cap_configstore_dbg_prop:s0
|
||||
|
||||
#hvdcp_opti
|
||||
persist.vendor.bms u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.chg u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.chg_plcy_mgr u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.cp u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.ctm u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.hvdcp2 u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.hvdcp_opti u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.hvdcp u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.pps u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.std-pd u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.tb u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.vin u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.qg u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.soh u:object_r:hvdcp_opti_prop:s0
|
||||
persist.vendor.bms u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.chg u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.chg_plcy_mgr u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.cp u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.ctm u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.hvdcp2 u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.hvdcp_opti u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.hvdcp u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.pps u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.std-pd u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.tb u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.vin u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.qg u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
persist.vendor.soh u:object_r:vendor_hvdcp_opti_prop:s0
|
||||
#adsprpc
|
||||
vendor.fastrpc. u:object_r:adsprpc_prop:s0
|
||||
vendor.fastrpc. u:object_r:vendor_adsprpc_prop:s0
|
||||
|
||||
#qvr properties
|
||||
vendor.qvr u:object_r:qvr_prop:s0
|
||||
vendor.qvr u:object_r:vendor_qvr_prop:s0
|
||||
|
||||
#bt lazyhal property
|
||||
ro.vendor.bt.enablelazyhal u:object_r:bluetooth_prop:s0 exact bool
|
||||
ro.vendor.bt.enablelazyhal u:object_r:vendor_bluetooth_prop:s0 exact bool
|
||||
|
||||
vendor.dcvs.prop u:object_r:vendor_dcvs_prop:s0
|
||||
|
|
|
|||
2
legacy/vendor/common/qtelephony.te
vendored
2
legacy/vendor/common/qtelephony.te
vendored
|
|
@ -26,7 +26,7 @@
|
|||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
get_prop(vendor_qtelephony, vendor_radio_prop)
|
||||
get_prop(vendor_qtelephony, qcom_ims_prop)
|
||||
get_prop(vendor_qtelephony, vendor_qcom_ims_prop)
|
||||
get_prop(vendor_qtelephony, vendor_persist_camera_prop)
|
||||
get_prop(vendor_qtelephony, vendor_audio_prop)
|
||||
get_prop(vendor_qtelephony, vendor_video_prop)
|
||||
|
|
|
|||
4
legacy/vendor/common/qti_logkit_app.te
vendored
4
legacy/vendor/common/qti_logkit_app.te
vendored
|
|
@ -31,8 +31,8 @@ app_domain(qti_logkit_app)
|
|||
binder_use(qti_logkit_app)
|
||||
|
||||
# allow set prop to start lkcore
|
||||
set_prop(qti_logkit_app, ctl_LKCore_prop)
|
||||
set_prop(qti_logkit_app, fm_prop)
|
||||
set_prop(qti_logkit_app, vendor_ctl_LKCore_prop)
|
||||
set_prop(qti_logkit_app, vendor_fm_prop)
|
||||
allow qti_logkit_app app_api_service:service_manager find;
|
||||
allow qti_logkit_app surfaceflinger_service:service_manager find;
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/common/qtidataservices_app.te
vendored
2
legacy/vendor/common/qtidataservices_app.te
vendored
|
|
@ -31,7 +31,7 @@ app_domain(qtidataservices_app);
|
|||
add_hwservice(qtidataservices_app, hal_cacert_hwservice)
|
||||
hwbinder_use(qtidataservices_app)
|
||||
|
||||
get_prop(qtidataservices_app, cnd_vendor_prop)
|
||||
get_prop(qtidataservices_app, vendor_cnd_vendor_prop)
|
||||
set_prop(qtidataservices_app, exported_radio_prop)
|
||||
|
||||
allow qtidataservices_app { app_api_service activity_service }:service_manager find;
|
||||
|
|
|
|||
2
legacy/vendor/common/qvrd.te
vendored
2
legacy/vendor/common/qvrd.te
vendored
|
|
@ -40,7 +40,7 @@ r_dir_file(vendor_qvrd, sysfs_kgsl)
|
|||
# Allow access to ADSP & SLPI
|
||||
allow vendor_qvrd { ion_device qdsp_device dsp_device xdsp_device }:chr_file r_file_perms;
|
||||
|
||||
get_prop(vendor_qvrd, adsprpc_prop)
|
||||
get_prop(vendor_qvrd, vendor_adsprpc_prop)
|
||||
|
||||
#
|
||||
# Display
|
||||
|
|
|
|||
2
legacy/vendor/common/rmt_storage.te
vendored
2
legacy/vendor/common/rmt_storage.te
vendored
|
|
@ -47,7 +47,7 @@ allow rmt_storage self:capability {
|
|||
setpcap
|
||||
};
|
||||
|
||||
set_prop(rmt_storage, ctl_vendor_rmt_storage_prop)
|
||||
set_prop(rmt_storage, vendor_ctl_vendor_rmt_storage_prop)
|
||||
|
||||
#For Wakelocks
|
||||
wakelock_use(rmt_storage)
|
||||
|
|
|
|||
2
legacy/vendor/common/sec_nvm.te
vendored
2
legacy/vendor/common/sec_nvm.te
vendored
|
|
@ -53,5 +53,5 @@ allow sec_nvm persist_secnvm_file:file create_file_perms;
|
|||
allow sec_nvm ion_device:chr_file rw_file_perms;
|
||||
|
||||
# Allow set/get prop to set/check if app is loaded
|
||||
set_prop(sec_nvm, spcomlib_prop)
|
||||
set_prop(sec_nvm, vendor_spcomlib_prop)
|
||||
allow sec_nvm sysfs_data:file r_file_perms;
|
||||
|
|
|
|||
4
legacy/vendor/common/sensors.te
vendored
4
legacy/vendor/common/sensors.te
vendored
|
|
@ -106,8 +106,8 @@ allow sensors xdsp_device:chr_file r_file_perms;
|
|||
|
||||
# For reading dir/files on /dsp
|
||||
r_dir_file(sensors, adsprpcd_file)
|
||||
# For reading adsprpc_prop
|
||||
get_prop(sensors, adsprpc_prop)
|
||||
# For reading vendor_adsprpc_prop
|
||||
get_prop(sensors, vendor_adsprpc_prop)
|
||||
|
||||
#allow access for sensors_vendor_data_file partition for ODL
|
||||
allow sensors sensors_vendor_data_file:dir create_dir_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/spdaemon.te
vendored
2
legacy/vendor/common/spdaemon.te
vendored
|
|
@ -60,6 +60,6 @@ r_dir_file(spdaemon, firmware_file);
|
|||
use_vendor_per_mgr(spdaemon)
|
||||
|
||||
# Allow set/get prop to set/check if app is loaded
|
||||
set_prop(spdaemon, spcomlib_prop)
|
||||
set_prop(spdaemon, vendor_spcomlib_prop)
|
||||
|
||||
allow spdaemon sysfs_data:file r_file_perms;
|
||||
|
|
|
|||
2
legacy/vendor/common/system_app.te
vendored
2
legacy/vendor/common/system_app.te
vendored
|
|
@ -159,7 +159,7 @@ hal_client_domain(system_app, hal_perf)
|
|||
|
||||
#allow system app to interact with the esepowermanager
|
||||
hal_client_domain(system_app, hal_esepowermanager)
|
||||
get_prop(system_app, fm_prop)
|
||||
get_prop(system_app, vendor_fm_prop)
|
||||
|
||||
#allow system_app access factory
|
||||
hal_client_domain(system_app, vendor_hal_factory_qti);
|
||||
|
|
|
|||
6
legacy/vendor/common/system_server.te
vendored
6
legacy/vendor/common/system_server.te
vendored
|
|
@ -136,9 +136,9 @@ allow system_server { vendor_location_app system_app } :file write;
|
|||
get_prop(system_server, vendor_opengles_prop)
|
||||
#get_prop(system_server, qemu_hw_mainkeys_prop)
|
||||
|
||||
get_prop(system_server, hwui_prop)
|
||||
get_prop(system_server, bservice_prop)
|
||||
get_prop(system_server, reschedule_service_prop)
|
||||
get_prop(system_server, vendor_hwui_prop)
|
||||
get_prop(system_server, vendor_bservice_prop)
|
||||
get_prop(system_server, vendor_reschedule_service_prop)
|
||||
allow system_server appdomain:file w_file_perms;
|
||||
get_prop(system_server, vendor_cgroup_follow_prop)
|
||||
|
||||
|
|
|
|||
8
legacy/vendor/common/vendor_init.te
vendored
8
legacy/vendor/common/vendor_init.te
vendored
|
|
@ -88,11 +88,11 @@ set_prop(vendor_init, vendor_rild_libpath_prop)
|
|||
#Blocked by neverallow vendor_init { file_type fs_type }:file execute_no_trans;
|
||||
#allow vendor_init vendor_toolbox_exec:file rx_file_perms;
|
||||
|
||||
set_prop(vendor_init, cnd_vendor_prop)
|
||||
set_prop(vendor_init, vendor_cnd_vendor_prop)
|
||||
|
||||
#Access vendor gpu freq properties
|
||||
set_prop(vendor_init, vendor_gpu_prop)
|
||||
set_prop(vendor_init, public_vendor_default_prop)
|
||||
set_prop(vendor_init, vendor_public_vendor_default_prop)
|
||||
|
||||
#allow vendor GPU property
|
||||
set_prop(vendor_init, vendor_opengles_prop)
|
||||
|
|
@ -101,7 +101,7 @@ get_prop(vendor_init, vendor_video_prop)
|
|||
set_prop(vendor_init, vendor_sys_video_prop)
|
||||
|
||||
#Acess vendor hvdcp properties
|
||||
set_prop(vendor_init, hvdcp_opti_prop)
|
||||
set_prop(vendor_init, vendor_hvdcp_opti_prop)
|
||||
|
||||
# Allow timezone to be overrided by vendor
|
||||
set_prop(vendor_init, exported_system_prop)
|
||||
|
|
@ -110,7 +110,7 @@ set_prop(vendor_init, exported_system_prop)
|
|||
set_prop(vendor_init, vendor_bluetooth_prop)
|
||||
|
||||
# Access vendor sensor properties
|
||||
set_prop(vendor_init, sensors_prop)
|
||||
set_prop(vendor_init, vendor_sensors_prop)
|
||||
|
||||
set_prop(vendor_init, vendor_dcvs_prop)
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/common/vppservice.te
vendored
2
legacy/vendor/common/vppservice.te
vendored
|
|
@ -41,7 +41,7 @@ binder_call(hal_vpp_server, hal_vpp_client)
|
|||
|
||||
# allow vppservice to access adsprpcd
|
||||
r_dir_file(vendor_vppservice, adsprpcd_file);
|
||||
get_prop(vendor_vppservice, adsprpc_prop)
|
||||
get_prop(vendor_vppservice, vendor_adsprpc_prop)
|
||||
r_dir_file(vendor_vppservice, firmware_file);
|
||||
|
||||
#allow access to vppservice (/data/vendor/vpp)
|
||||
|
|
|
|||
2
legacy/vendor/common/wigighalsvc.te
vendored
2
legacy/vendor/common/wigighalsvc.te
vendored
|
|
@ -42,7 +42,7 @@ allow hal_wigig_client hal_wigig_hwservice:hwservice_manager find;
|
|||
add_hwservice(hal_wigig, hal_wigig_hwservice)
|
||||
|
||||
# allow start/stop services via ctl.start and ctl.stop
|
||||
set_prop(hal_wigig, ctl_vendor_wigigsvc_prop)
|
||||
set_prop(hal_wigig, vendor_ctl_vendor_wigigsvc_prop)
|
||||
|
||||
# access wigig properties
|
||||
# need to write vendor.wigig.driver/read vendor.wigig.driver.probed
|
||||
|
|
|
|||
2
legacy/vendor/sdm660/vendor_init.te
vendored
2
legacy/vendor/sdm660/vendor_init.te
vendored
|
|
@ -25,6 +25,6 @@
|
|||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
allow vendor_init freq_prop:property_service set;
|
||||
allow vendor_init vendor_freq_prop:property_service set;
|
||||
|
||||
set_prop(vendor_init, vendor_video_prop);
|
||||
|
|
|
|||
2
legacy/vendor/test/property.te
vendored
2
legacy/vendor/test/property.te
vendored
|
|
@ -24,5 +24,5 @@
|
|||
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
|
||||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
type sensors_dbg_prop, property_type;
|
||||
type vendor_sensors_dbg_prop, property_type;
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/test/property_contexts
vendored
2
legacy/vendor/test/property_contexts
vendored
|
|
@ -24,5 +24,5 @@
|
|||
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
|
||||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
persist.vendor.debug.sensors. u:object_r:sensors_dbg_prop:s0
|
||||
persist.vendor.debug.sensors. u:object_r:vendor_sensors_dbg_prop:s0
|
||||
|
||||
|
|
|
|||
2
legacy/vendor/test/vtloopback_app.te
vendored
2
legacy/vendor/test/vtloopback_app.te
vendored
|
|
@ -35,6 +35,6 @@ binder_call(vtloopback_app, hal_imsrtp)
|
|||
allow vtloopback_app hal_imsrtp_hwservice:hwservice_manager find;
|
||||
allow vtloopback_app cameraserver_service:service_manager find;
|
||||
allow vtloopback_app mediaserver_service:service_manager find;
|
||||
get_prop(vtloopback_app, qcom_ims_prop)
|
||||
get_prop(vtloopback_app, vendor_qcom_ims_prop)
|
||||
allow vtloopback_app { app_api_service activity_service }:service_manager find;
|
||||
')
|
||||
|
|
|
|||
Loading…
Reference in a new issue