tequilaOS/platform_device_qcom_sepolicy-legacy-um
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
2865 commits 1 branch 0 tags 4.7 MiB
Commit graph

2865 commits

This branch
This branch
All branches
Author SHA1 Message Date
Subash Abhinov Kasiviswanathan
2c3fed3a82 sepolicy: Add policies for IPv6 Tethering 
Added security policies needed for IPv6 tethering functionality
to perform operations on sockets

CRs-fixed: 628313
Change-Id: Ia5d88ecac78693aff672123492bf1cb3307110a8
 2014-07-25 17:09:58 -07:00
Hariprasad Jayakumar
3fef26f444 SEAndroid: Add Atfwd daemon related policies 
Add ATFWD daemon context and 'allow' policies in order for its
full functionality.

Change-Id: I9dcfdb94f6502a510331b3f11e8b4ecfe56a5931
 2014-07-24 02:27:06 -07:00
Biswajit Paul
45df9ab9bb Add context for persist filesystem 
Label perist firmware with seandroid context

Change-Id: I0943c4cc72f4afafb560ef3f318502b7fa94502c
 2014-07-24 02:25:55 -07:00
Subash Abhinov Kasiviswanathan
1b307e75b3 sepolicy: Modify domain transitions for qmuxd and netmgrd 
Allow domain transitions from shell, su and adbd for qmuxd and
netmgrd in case of engineering and user debug builds only

CRs-fixed: 590265
Change-Id: Ibaad1d0d547dca13fa17f7c909c6347e59a24d97
 2014-07-24 02:24:49 -07:00
Brent Hronik
e20881672f sepolicy: add irsc_util SELinux rules 
Confines irsc_util as well as defines rules to grant
it appropriate access.

Change-Id: I8749b012ee5ca513822a9f8543436fcc5e540e1b
 2014-07-24 02:23:44 -07:00
Brent Hronik
ccc29035a5 sepolicy: add qmi SELinux rules 
Confines qmi ping and test service tests as well as defines rules to grant
them appropriate access.

CRs-Fixed: 582040
Change-Id: I57c9a82d3efcd643a6d3ac26c4217cd51b1bb86b
 2014-07-24 02:22:21 -07:00
Brent Hronik
6a6ca233fb sepolicy: Add smd device contexts and rules 
Add the contexts for smd devices as well as the rules for smd pkt and
tty loopback modules.

Change-Id: Ie2ac21a4a8e67bd066a80274b39e99361ad9f698
 2014-07-24 02:21:12 -07:00
Dinesh K Garg
9bd586d4d5 SEAndroid changes for HW based disk encryption 
HW based disk encryption wipes the data if user enters incorrect
password for a number of times. This requires that Vold has access
to cache file and recovery.

Change-Id: Ibb3069af6a15558202c02ae5454008bb8ecb62e9
 2014-07-24 02:20:05 -07:00
Avijit Kanti Das
353e9296b1 sepolicy: add contexts for qmuxd and netmgrd 
Added the context for qmuxd and netmgrd to operate
in confined domain

CRs-fixed: 590265
Change-Id: I263e19710a9cc7d4bafdb5317d9fe47315205362
 2014-07-24 02:18:46 -07:00
Avijit Kanti Das
2d70e6f52c sepolicy: add contexts for the qmux devices 
Added the context for the various qmux devices
to operate with other domains

CRs-fixed: 590265
Change-Id: I4e590f6db38b756064089b72b8af339d4d16b81e
 2014-07-24 02:17:39 -07:00
Biswajit Paul
ed3f0230ff Make adbd permisive for userdebug and eng builds 
Allow adbd to be permissive for userdebug or eng builds

Change-Id: I7f3b64d0ceda8b2f3c8613f77059c2a0bf1c0f43
 2014-07-24 02:16:10 -07:00
Dinesh K Garg
e424be53e1 SEAndroid changes for device encryption 
Device encryption requries fsck to be run while attempting to
mount userdata partition. For encrypted device, it runs in VOLD
context. Hence, VOLD needs permission to complete the job.

Change-Id: I804153253d241050cfe5f35b3f5c129f9b91a3c6
 2014-07-24 02:09:28 -07:00
Biswajit Paul
bf8f491cf4 Add new context to firmware images 
VFAT partition is set to sdcard_external. Add a new file_type
for firmware images

Change-Id: Ida97ba0c2dd018428277a542ebec36f728613ab3
 2014-07-23 23:00:37 -07:00
Dinesh K Garg
1e60c75126 SEAndroid Policy changes for HW based disk encryption 
HW based disk encryption depends upon qseecom and module request
operation from kernel. Adding permission for VOLD for smooth
functionality of HW based disk encryption.

Change-Id: If938f1be1067ac14d5d2f685902643c5d580d94e
 2014-07-23 17:30:24 -07:00
Git User Service Account
882eb24f08 Initial empty repository 2013-11-25 14:52:07 -08:00