- Label the new a2dp HAL service as Audio he service
so that Audio HAL process can load it and bluetooth
host process can interact with new service.
Change-Id: If7a4c5f9dcf33edbef5647107cae4cfdf847c63f
-dpm need access to send signal to child process
while installing iptable rules with specific timeout.
CRs-Fixed: 2354745
Change-Id: I072f0a2d99dc5563b56815c25c6b7edb2e764175
Latest sepolicy rules in android Q enforce ioctl
restrictions on blk_file. This change adds sepolicy
rules to allow qseecom daemon process to perform ioctl
calls to rpmb partition in case of emmc based targets.
Change-Id: I884dbe35b5233eac195cfcfdaa73b359b671955d
Signed-off-by: Anmolpreet Kaur <anmolpre@codeaurora.org>
- Add separate hal_btconfigstore_hwservice
- Initialize server and client for hal_btconfigstore.
- Make system_app to be a client of hal_btconfigstore for FM.
- Make Bluetooth to be a client of hal_btconfigstore.
Change-Id: I680bcdb79836fbba22140f9e4bcfadeb7a70ed59
Currently qti_init_shell label is applied for init.qti.charger.sh
however the script filename is changed to init.qti.chg_policy.sh
under charger_monitor project. Hence update access policy for
init.qti.chg_policy.sh and move them to qva/vendor/common along
with "hvdcp_opti" which seems to be the proper place.
Change-Id: I86ec11c12593a76069fbdcf5ed41cc05359938ad
Add sepolicy rules to allow qseecom daemon process
to perform ioctl calls to rpmb partition in case of
eMMC based targets.
Change-Id: I1993a0cdf54dc949172afae8c095b4e253355e1c
1. Allow access to tee device
2. Allow access to load firmware images
3. Allow access to interract with ion_device
Change-Id: Ibedc9b5e4eef94dc737f21a85cc7a974dab3d8aa
With separation of video properties into system/vendor buckets,
WFD needs to amend the rules accordingly.
Change-Id: I5570ac3045b5f6c11afe9765192d7a2bc4bb5e1f
With migration of code on WFD source from system to vendor and
to system_app for WFD sink, add rules for access to OSAL logmask
file and OSAL debug properties(to allow for parser log debugging).
Change-Id: I209685d4336f0466421f286ecc50d81c1d9b9aa1
Rules need to be added for dumping since WFD spans across
both system/vendor context post-QSSI re-architecture.
Change-Id: I11b0410af67eb2127d4d04e009ff8dbea81f2058
Removed net admin capabilites for lowi. From now nl msgs of lowi
would route to wifihal via control socket.
Wifi hal allows its authenticated clients to send nl msgs to it.
Lowi module is one of its clients and hence added socket permissions
to access wifihal control interface
CRs-Fixed: 2424268
Change-Id: I18aba9169b23e8b0c9260cbf1e7a52bf59e0030d
Added wifihal directory in /dev/sockets path.
Wifi hal allows its authenticated clients to send nl msgs to it.
Lowi module is one of its clients and hence added socket permissions
to access wifihal control interface.
CRs-Fixed: 2424252
Change-Id: I9aa7b54f2f944d59148508eace3c658a23e5d2d8
Lowi interacts with wpa supplicant for scan and anqp query via ctrl
communication. As the wpa control socket is in /data/vendor/ path
the required sepolicy changes are needed for location module
CRs-Fixed: 2431133
Change-Id: Icaef72229bc028c446c8d60c0b471de9583c63ae
