tequilaOS/platform_device_qcom_sepolicy-legacy-um
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
2126 commits 1 branch 0 tags 4.7 MiB
Commit graph

2126 commits

This branch
This branch
All branches
Author SHA1 Message Date
Jack Pham
2ee7578514 sepolicy: allow vendor_init to set vendor_usb_prop 
vendor_init needs to be able to setprop vendor.usb.* properties
e.g. init.target.rc.

Change-Id: I0e57a5753cd1fee4788fea3c52e583d6b61d857d
 2018-04-26 12:00:06 -07:00
Linux Build Service Account
c01cf19e6c Merge "sepolicy: add vendor prefix to usb properties" 2018-04-26 00:51:11 -07:00
Jack Pham
b89cf8351c sepolicy: add vendor prefix to usb properties 
Define property context for vendor.usb.* and allow access to
the same for vendor_init and qti_init_shell. Also remove the
definitions of sys_usb_configfs and sys_usb_controller since
they are redefinitions of the same properties already part of
exported_system_radio_prop and exported2_system_prop and are
already granted to vendor_init and recovery (via coredomain).

Change-Id: Ia394934cb9f34032b95701f768d9ed4e26819ac5
 2018-04-25 18:13:18 -07:00
Yida Wang
028443303c Add device sepolicy rules for NN HAL implementation 
Change-Id: I41d761efd3eecc8afd77d073332bfcb62e732145
 2018-04-25 13:11:19 -07:00
Linux Build Service Account
aabd37303a Merge "FR 48725: Support for new rules related to vendor props" 2018-04-24 17:28:52 -07:00
Gerrit - the friendly Code Review server
af01fb8c1a Merge changes into sepolicy.lnx.4.9 2018-04-24 03:51:43 -07:00
Linux Build Service Account
d97a039fa4 Merge "sepolicy: Add rules for data/vendor/camera" 2018-04-24 03:47:34 -07:00
RAJATH R
cada09ca41 FR 48725: Support for new rules related to vendor props 
- Sepolicy changes required for support for additional
  rules related to vendor created Android properties.

- Sepolicy changes required for new HAL dump
  format

CRs-Fixed: 2227667 2216610
Change-Id: I2fb44a6ea40f669698e4af1eee9b68039f8af6b9
 2018-04-23 22:20:24 -07:00
Linux Build Service Account
a497cc4521 Merge "qmuxd.te: Remove all references" 2018-04-23 22:12:13 -07:00
Linux Build Service Account
e766ded742 Merge "genfs_context: Add devfreq nodes to sysfs_devfreq" 2018-04-23 22:12:12 -07:00
Linux Build Service Account
ac7512d8d6 Merge "Associate proc_wifi_dbg with proc_type" 2018-04-23 17:21:19 -07:00
Sauhard Pande
10541848d7 sepolicy: Add rules for data/vendor/camera 
Enabling SE Linux policies for /data/vendor/camera
for filecreate and read permission

Change-Id: I971d74f76461b502911a4fabb2753d7b537845c0
 2018-04-23 12:37:06 -07:00
Subash Abhinov Kasiviswanathan
8de0b57a85 netmgrd: add policies for netmgr recovery file 
Define a new file context for netmgr recovery
file and add the corresponding SE policy to
allow netmgr access to that file.

CRs-Fixed: 2225495

Change-Id: I051b6d4361a1cef783dd22523c4da3a62ce21065
 2018-04-23 12:01:11 -07:00
Subash Abhinov Kasiviswanathan
2b7efaaf49 qmuxd.te: Remove all references 
qmuxd is not used on this target, so remove all unused contexts.

CRs-Fixed: 2190092
Change-Id: Ifd92ffe4652e9734f6ea4f8e959c8028979ec6b6
 2018-04-23 11:46:47 -07:00
AnilKumar Chimata
55fe0717e2 sepolicy: Change qseecom listener property 
Update qseecom listner property to new one by prepending
vendor name to make vendor service.

Change-Id: I49c1525cb34c66b3e9592e5d226301a01ad2e4b6
 2018-04-21 03:02:11 +05:30
Kyle Yan
b78c8b7c6e genfs_context: Add devfreq nodes to sysfs_devfreq 
Postboot accesses multiple devfreq device nodes so label them under
sysfs_devfreq to allow reads/writes.

Change-Id: Ife684c4568bf01a002dde4591cfeb833bbda922b
 2018-04-18 17:06:26 -07:00
Srinivas Narne
6383e16ea1 Associate proc_wifi_dbg with proc_type 
Associate proc_wifi_dbg with proc_type
Remove IOffloadConfig, IOffloadConrol to fix bootup

Change-Id: I0a69a16be10b391461b75ce8c84eebf42279c40a
 2018-04-17 17:28:37 -07:00
Linux Build Service Account
24e385f86d Merge "sepolicy: Configure hbtp jnis as same hal process" 2018-04-17 14:27:26 -07:00
Alex Sarraf
54a7eee71a sepolicy: Configure hbtp jnis as same hal process 
Configure hbtp jnis as same hal process

Change-Id: Ic69c565684b5942dc13002080c2234499141f5ad
 2018-04-16 11:22:41 -07:00
Linux Build Service Account
39b770132a Merge "sepolicy: Add rule to create socket and access QMI IOCTLs" 2018-04-14 22:51:47 -07:00
Alex Sarraf
e7bfd75199 sepolicy: allow ctl property set for vendor.hbtp 
allow ctl property set for vendor.hbtp service to be launched by
vendor init process

Change-Id: I117947396a853f1c18febbc8979da47103354e1d
 2018-04-13 16:34:08 -07:00
Linux Build Service Account
6947a00bfd Merge "sepolicy: Changes to enable FOSS" 2018-04-12 17:27:29 -07:00
Linux Build Service Account
1e691e7af1 Merge "Allow xtra-daemon to communicate with hal_gnss" 2018-04-12 13:20:25 -07:00
Linux Build Service Account
174af1bb5a Merge "Remove wifi_data_file from data_between_core_and_vendor_violators" 2018-04-12 09:29:44 -07:00
Linux Build Service Account
76f5912287 Merge "sepolicy: SDM845.LA.1.9: Add rw permission for i2c touch sys node" 2018-04-12 07:18:30 -07:00
Linux Build Service Account
cf27e0aa5f Merge "sepolicy: Add DRM widevine HAL" 2018-04-11 13:24:50 -07:00
Shaikh Shadul
e5f92e8eb3 sepolicy: Add rule to create socket and access QMI IOCTLs 
Add rule to create socket and access QMI IOCTLs by applications
running in system app context.

Change-Id: Ib2ee23be8d3c46c2301e5acb0ece13fd8a3b68a5
 2018-04-11 18:46:47 +05:30
Linux Build Service Account
25bc357493 Merge "sepolicy: add wcd-spi-ac device node to policy" 2018-04-11 00:59:42 -07:00
Linux Build Service Account
9cb244a941 Merge "sepolicy: allow init script to set boot.parsed, cores_online properties" 2018-04-11 00:59:41 -07:00
Naseer Ahmed
0ca2583000 sepolicy: Changes to enable FOSS 
Change-Id: I737141930a9c97748a771a62cc54a89774d5574c
 2018-04-10 17:15:20 -04:00
Srinivas Girigowda
fc54d547b9 Remove wifi_data_file from data_between_core_and_vendor_violators 
CRs-Fixed: 2221880
Change-Id: I124d152c5b309dc708fd8a27905f55bd3c91259a
 2018-04-10 09:10:15 -07:00
Amit P Choudhari
6b011caa94 sepolicy: SDM845.LA.1.9: Add rw permission for i2c touch sys node 
Change-Id: I5e0fd2a668042044304c3b9361b5121e2d2dfc67
 2018-04-10 12:45:36 +05:30
Linux Build Service Account
4e2dc063ce Merge "Remove cgroup create_file_perms from init/vendor_init" 2018-04-10 00:12:41 -07:00
Dante Russo
8a91ee7078 Allow xtra-daemon to communicate with hal_gnss 
Communication over socket

CRs-fixed: 2220236
Change-Id: Icfc897342ff8bbaf4c07b8032ac18d9a470fea8e
 2018-04-09 16:14:59 -07:00
Bhalchandra Gajare
cd96fe711a sepolicy: add wcd-spi-ac device node to policy 
wcd-spi-ac-client device node is used by audioserver to
communicate the SPI access control data to the driver.
Change adds this device node to security policy so that
audioserver process can access this device node.

Change-Id: I9f71034d3529c0cee4ee1e3472e0f0563c13ba2d
 2018-04-09 16:10:58 -07:00
Vijay Ganti
65e2f3a5d1 sepolicy: allow init script to set boot.parsed, cores_online properties 
perf-hal reads these properties during initiaization and prepares
itself for the upcoming perflock requests from clients.

- vendor.post_boot.parsed
- ro.vendor.perf.cores_online

Change-Id: I491d870b420365bfe5d7e332004594bf10c1d5ea
 2018-04-09 12:27:16 -07:00
Tyler Wear
a683298033 netmgrd: Remove policies related to setting of properties 
Netmgrd no longer sets any of the net and rmnet properties since
the equivalent functionality is deprecated.

CRs-Fixed: 2219985
Change-Id: I72461d1784712c8cfe4998608a1519b8f7208f6d
 2018-04-06 11:23:38 -06:00
Udaya Bhaskara Reddy Mallavarapu
6b9d980e67 sepolicy: Add DRM widevine HAL 
Add DRM widevine HAL for widevine DRM service

Change-Id: Ic1e1b5c85a3f91a6e7190e492605819513ee7295
 2018-04-06 00:12:01 -07:00
Linux Build Service Account
4666943851 Merge "cnd: Remove Unnecessary Policies" 2018-04-05 22:19:59 -07:00
Srinivas Narne
1d2aa592e5 Remove cgroup create_file_perms from init/vendor_init 
These are needed to address new neverallows.

Change-Id: Ic6d59bb4018a684d027219edb1f11c0ba387b0c5
 2018-04-05 11:31:21 -07:00
Vijay Ganti
a4fdf25684 sepolicy: Add Policy for hal perf 
Add Policy for hal perf

Change-Id: I5e84e80afceb32aa50de699c6386fc6bc556da5b
 2018-04-04 15:22:08 -07:00
Sunmeet Gill
70f87e5b57 cnd: Remove Unnecessary Policies 
Remove any policies which are not explicitly needed
for cnd functionality.

Change-Id: I22db76f1416555386a52fbc3ac1ec05b419cdf8b
 2018-04-04 10:23:56 -07:00
Linux Build Service Account
976817786e Merge "sepolicy: Fix denials for backlight" 2018-04-02 21:29:27 -07:00
Linux Build Service Account
8dd3ec2fcf Merge "Sepolicy: Added sepolicies for tloc daemon" 2018-04-02 10:45:29 -07:00
Vivek Vilvaraj
c7f46198c2 Sepolicy: Added sepolicies for tloc daemon 
Added SELinux policies for Trusted Location Service

Change-Id: I245c41356bcd4d285126cf3f81367003c16e6a36
 2018-04-01 22:44:26 -07:00
Wileen Chiu
540003b3b6 Move qtelephony from system user 
- change from system user to user app
- remove unneeded and add necessary rules

Change-Id: Ic8dbb8da47f31fedddf2c8e3f07abfdfde0cb804
CRs-Fixed: 2215452
 2018-03-30 14:57:05 -07:00
Linux Build Service Account
b3191052f3 Merge "Add sepolicy dir and sock permissions to location module" 2018-03-29 22:49:03 -07:00
Linux Build Service Account
8f83f2f73a Merge "sepolicy: Rename sensors property type" 2018-03-29 02:51:13 -07:00
Vinay Gannevaram
f77c440c2d Add sepolicy dir and sock permissions to location module 
Allow location module to have directory read, write
and socket create permissions in /data/vendor/ path.

CRs-Fixed: 2205732
Change-Id: I4a75623b562337e13b121bacf86af0f97f457916
 2018-03-29 14:12:36 +05:30
Gerrit - the friendly Code Review server
5155ee3f24 Merge changes into sepolicy.lnx.4.9 2018-03-28 18:43:06 -07:00