tequilaOS/platform_device_qcom_sepolicy-legacy-um
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
2837 commits 1 branch 0 tags 4.7 MiB
Commit graph

2837 commits

This branch
This branch
All branches
Author SHA1 Message Date
Xu Yang
40ce4bbb1d sepolicy: Allow platform app to access hal display color service 
Change-Id: I7d64d51e8d7ec9a9b6a0c129070265cb01c813d4
 2019-06-13 19:22:42 -07:00
qctecmdr
2137a69ea5 Merge "sepolicy: add audio permission for spi device" 2019-06-13 15:46:11 -07:00
qctecmdr
d533508208 Merge "Sepolicy: add rule for seempd" 2019-06-13 13:14:47 -07:00
Maya Erez
654a150566 sepolicy: add policies for wigig sensingdaemon service 
Add SE policies for sensingdaemon daemon required for
wigig sensing feature.

Change-Id: I5e5363495cdff6966f6b377fd4688df72f5aa7d0
 2019-06-13 01:12:57 -07:00
Derek Chen
44aac37477 sepolicy: add audio permission for spi device 
Add audio device domain permission for
spidev2.0 device node.

Change-Id: Iff17bc9d05f780620ee1ee89166a74bef38342fb
 2019-06-12 14:42:50 -07:00
qctecmdr
38ea1e979b Merge "sepolicy: Add rules to enable non-A/B dynamic partitions" 2019-06-12 10:59:51 -07:00
qctecmdr
f82a9615fa Merge "sepolicy: Add support for fastbootd to flash dynamic partitions" 2019-06-12 07:50:38 -07:00
qctecmdr
493e78747d Merge "sepolicy: Add permissions for composer service" 2019-06-12 04:46:19 -07:00
Mahantesh Sanakall
ef4cce3990 sepolicy: Add rules to enable non-A/B dynamic partitions 
Change-Id: Icb6e99cf07a1105bb3f2f4311825617c58b8e699
 2019-06-12 04:17:35 -07:00
Anuj Singhal
bad42f8098 sepolicy: Add support for fastbootd to flash dynamic partitions 
Sepolicy changes needed for dynamic partition support for legacy
targets : SDM845 and SDM710
- Add rules to enable fastbootd mode flashing of dynamic partition
- Define labels for super, recovery and vbmeta_system partitions
- Allow update_engine to access recovery partition for OTA

Change-Id: I6f692da6ab687529833a87b6feb375fda26508b8
 2019-06-12 15:04:58 +05:30
Marco Zhang
1b7a795471 sepolicy : remove duplicate defination of uefi_block_device 
As definition of uefi_block_device  been moved to common
removing this definition from other target specific folders

Change-Id: I7367555c4d2d869b8f55a3c5bad0ad72a0203e67
 2019-06-12 00:08:56 -07:00
Rajavenu Kyatham
23a0ea8f24 sepolicy: Add permissions for composer service 
- composer service is required for communication b/w
  SF and HWC. 

Change-Id: I52652d309363b3f0f7b963d615688ce3e11c6fef
CRs-Fixed: 2466343
 2019-06-12 12:20:03 +05:30
qctecmdr
78d4d64afd Merge "sepolicy:Moved NNHAL-1.2v rules to common folder" 2019-06-11 16:31:14 -07:00
qctecmdr
e410bc9a3a Merge "sepolicy: Fix denials in location app" 2019-06-11 13:33:17 -07:00
qctecmdr
de2313a4a8 Merge "Sepolicy: Add sepolicy permissions to NPU LLCC BWMON device" 2019-06-11 10:41:00 -07:00
Harikrishnan Hariharan
acd13b1cee sepolicy: Fix denials in location app 
- Add rule for write access to dpmtcm_socket sock file
- Add few domains to dont audit rule list for vendor_gles_data_file
dir search.

Change-Id: Iabc0250d2ac0bf28e4f4dd3d8c67b4bf20fbeb1e
CRs-Fixed: 2469209
 2019-06-11 22:40:07 +05:30
qctecmdr
b362bed0fa Merge "Sepolicy: Add permissions to set vendor boot mode prop for Factory HIDL" 2019-06-11 06:52:29 -07:00
Huang Li
b3e35668d2 Sepolicy: Add permissions to set vendor boot mode prop for Factory HIDL 
Allow permissions for Factory HIDL to set vendor.sys.boot_mode prop.

Change-Id: Ifa5edbb01d5f859225ccb440ec367c222b8eebf4
CRs-Fixed: 2450631
 2019-06-11 18:29:07 +08:00
Madhanraj Chelladurai
ed9d8b83c9 sepolicy: permissions for audio, hw service for location_test_app 
permissions for audio and hw service access for
location_test_app

Change-Id: I1e059486248dafc7a6adeb0b6273eb3d39ab2235
CRs-Fixed: 2445789
 2019-06-11 03:20:36 -07:00
qctecmdr
deb6cc1f72 Merge "sepolicy: allow gnss hal to access health hal" 2019-06-10 12:14:36 -07:00
qctecmdr
fdbf08d08c Merge "sepolicy: Allow secure_element HAL to access vendor data" 2019-06-10 08:56:18 -07:00
qctecmdr
11d1a57ae3 Merge "sepolicy: Add permissions for composer service" 2019-06-10 06:30:18 -07:00
Gaurav Singhal
6502396bcb sepolicy: Allow secure_element HAL to access vendor data 
Allow secure element HAL service to access vendor data file
for JCOP and loader service use cases.

Change-Id: Ic37f364be5374a2de24f5c02f4b4536ce0212e79
 2019-06-10 17:47:18 +05:30
Rajavenu Kyatham
e3f33989ec sepolicy: Add permissions for composer service 
CRs-Fixed: 2466343
Change-Id: I5a66822c1c8b46093cd62eb08aa1ff48b1c658b7
 2019-06-10 04:12:38 -07:00
qctecmdr
dca379a39e Merge "sepolicy: provide rules for cryptfs_hw hal" 2019-06-10 04:08:18 -07:00
Nitin Shivpure
ebc9ef5c11 sepolicy: allow bluetooth hal to access persist/bluetooth data 
allow bluetooth hal to access(read, write, create) persist bluetooth
data.

Change-Id: Idee1f22f12c9852532325577efd534a731985d45
 2019-06-10 12:52:52 +05:30
vishawar
29f7028ff8 sepolicy:Moved NNHAL-1.2v rules to common folder 
-Removed target specific data rules
-Added rules to common folder

Change-Id: I935dc8025f98c9cf18db15e01276c9237f6e77eb
 2019-06-10 10:48:17 +05:30
Neeraj Soni
66bb7bb387 sepolicy: provide rules for cryptfs_hw hal 
BUG: b/121350843
vold need to communicate with tee device node to set crypto
engine keys for userdata encryption. cryptfs_hw hal is
implemented to facilitate this commuincation.

Change-Id: Ie1d02b211e1f6e147092710008b363795df5e0a6
Signed-off-by: Neeraj Soni <neersoni@codeaurora.org>
 2019-06-09 12:41:46 +05:30
qctecmdr
fdd65f7f77 Merge "sepolicy: Add iuicc device and its access for spdaemon" 2019-06-08 21:35:06 -07:00
qctecmdr
f520720f98 Merge "sepolicy: add permission for qdmaststsd" 2019-06-08 15:15:04 -07:00
qctecmdr
345bdfcd92 Merge "sepolicy: add sysfs paths for mhi timesync feature support" 2019-06-08 12:37:14 -07:00
qctecmdr
b676c640d7 Merge "sepolicy : add binder call from system_app-> update_engine" 2019-06-08 07:38:16 -07:00
qctecmdr
b9ff465d8a Merge "Initial target definition for atoll" 2019-06-08 07:25:55 -07:00
qctecmdr
6a9caf83c8 Merge "sepolicy : Add net admin capability for cnss-daemon" 2019-06-08 07:25:08 -07:00
qctecmdr
29da6714d6 Merge "sepolicy: Add support for touch AOI and touch wakeup" 2019-06-07 21:11:23 -07:00
qctecmdr
9b5f8fae6e Merge "sepolicy: labeling subsystem and graphics nodes" 2019-06-07 21:11:23 -07:00
qctecmdr
f68c353327 Merge "sepolicy: allow time-services to access perf hal" 2019-06-07 21:11:23 -07:00
qctecmdr
135d0cc82c Merge "Allow qtelephony to access perf hal" 2019-06-07 21:11:23 -07:00
Rama Aparna Mallavarapu
813d7dac28 Sepolicy: Add sepolicy permissions to NPU LLCC BWMON device 
Add permissions to npu llcc bw device so that post boot script
can modify them at boot.

Change-Id: I6be945877cdf379cba40e19e6a24a787c918cb9f
 2019-06-07 12:14:00 -07:00
Amandeep Virk
57c728d261 sepolicy: Add iuicc device and its access for spdaemon 
Define iuicc device so that spdaemon can open an spcom
channel to corresponding iuicc application on Secure
Processor

Change-Id: I8028df28b12058cbb4d49023cf548755ec3f271c
 2019-06-07 10:47:19 -07:00
Vinay Gannevaram
11de9bde80 sepolicy : Add net admin capability for cnss-daemon 
cnss-daemon needs net admin capability to interact
via nl communication.

CRs-Fixed: 2461663
Change-Id: I8b23451895b38e29dd84aaf6e440071157d9407e
 2019-06-06 23:26:17 -07:00
Shawn Shin
4b6dde0be7 sepolicy: add permission for qdmaststsd 
qdmastatsd use it for collection

Change-Id: I5570834336bf0aa24dd4e8507fe2c702788ecd38
 2019-06-06 09:55:30 -07:00
Harikrishnan Hariharan
ee24695856 sepolicy: allow gnss hal to access health hal 
Add rule for gnss hal to listen battery status for legacy
devices upgrade.

Change-Id: Ia251c3446b7f7861bb920fe635229d8e2e90c824
CRs-Fixed: 2467115
 2019-06-06 19:11:12 +05:30
Jaihind Yadav
cc3cac8f9b sepolicy: labeling subsystem and graphics nodes 
Change-Id: Ie1b1c3135269f6417bfa78a9bcd4e055d3d3fd65
 2019-06-05 23:26:34 -07:00
Mohit Aggarwal
938a52c749 sepolicy: allow time-services to access perf hal 
Allow time-services to access perf hal

Change-Id: Iaca0b6e47b63aeccdf5e5faa3628a0cc53017be0
 2019-06-06 10:42:17 +05:30
Sujeev Dias
10553605a6 sepolicy: add sysfs paths for mhi timesync feature support 
Add sysfs path for mhi timesync feature files to be read from
userspace applications/services.

CRs-Fixed: 2426302
Change-Id: Ib28800e000774d8ce27dd9a78db9efd6ebdbdb00
 2019-06-04 17:47:19 -07:00
qctecmdr
8ef1adb229 Merge "sepolicy: xtwifi-client access to hlos_rfs shared" 2019-06-04 14:10:33 -07:00
qctecmdr
8da456b050 Merge "sepolicy : addressed dumpstate related denials." 2019-06-04 11:20:55 -07:00
qctecmdr
878819b0d9 Merge "sepolicy: Read vendor_pd_locater_dbg_prop in GNSS HIDL for legacy" 2019-06-04 05:44:15 -07:00
Abir Ghosh
f777748b76 sepolicy: Add support for touch AOI and touch wakeup 
Add sepolicy permissions for qfp-daemon to access sysfs
nodes for setting touch AOI and touch wakeup feature for
fingerprint.

Change-Id: Ic890c4cc95abdaaede9f7d448d848d5859c4a04a
 2019-06-04 15:31:58 +05:30