tequilaOS/platform_device_qcom_sepolicy-legacy-um
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
2961 commits 1 branch 0 tags 4.7 MiB
Commit graph

2961 commits

This branch
This branch
All branches
Author SHA1 Message Date
Harikrishnan Hariharan
4829c3a00a sepolicy: allow gnss hal to access health hal 
Add rule for gnss hal to listen battery status.

Change-Id: If9874ab9bbb92a42b74ec696f55725b98a913f9e
CRs-fixed: 2411905
 2019-05-29 23:28:21 -07:00
Anmolpreet Kaur
b59a8af1bb sepolicy: private: Remove smcinvoke daemon sepolicy 
smcinvoke daemon will no longer be available in system.
Sepolicy rules are not needed to be defined as smcinvoked
is deprecated from system.

Change-Id: I12d00976789db4cf00aabeeb2781e34b19830eed
 2019-05-29 23:18:20 -07:00
qctecmdr
aa536e05d4 Merge "sepolicy: Adding permissions for nfc" 2019-05-29 16:35:06 -07:00
qctecmdr
8db4440147 Merge "sepolicy: Allow init to access mem_sleep" 2019-05-29 13:50:14 -07:00
qctecmdr
a7ff30b3c2 Merge "sepolicy: permit graphics hwcomposer to read kgsl sysfs nodes" 2019-05-29 11:11:13 -07:00
Ananth Raghavan Subramanian
ab0c44baeb sepolicy: Allow init to access mem_sleep 
Add labels for the mem_sleep node and allow the init shell to access it.

Change-Id: Id9ba40a2c0c52e9ab08b249291a5090b249ce64d
 2019-05-29 09:51:38 -07:00
qctecmdr
fa61edc076 Merge "Add sepolicy for dynamic partition." 2019-05-29 08:27:03 -07:00
qctecmdr
a8130be8b8 Merge "sepolicy : Add rule to set property for wlan driver/fw ver info" 2019-05-29 01:50:22 -07:00
Padmanabhan Komanduru
00ddb37c5f sepolicy: permit graphics hwcomposer to read kgsl sysfs nodes 
Permit graphics hwcomposer to access kgsl sysfs node to get
the value of maximum GPU clock supported.

Change-Id: Idc3966029364436cbca445a9bc704ee2a2caf874
 2019-05-29 14:02:15 +05:30
Vinay Verma
bdbf9d49aa Add sepolicy for dynamic partition. 
Change-Id: Ic2ebaf716195e64015b3beb457f1364cf4fec604
 2019-05-29 13:25:19 +05:30
qctecmdr
3c447db2dc Merge "sepolicy: msmnile: Add vehicle hal rules for Q bringup" 2019-05-28 12:26:16 -07:00
qctecmdr
4fd76090d3 Merge "sepolicy: add SE policy rules for hta runtime libraries" 2019-05-28 10:21:15 -07:00
Vinay Gannevaram
839229b542 sepolicy : Add rule to set property for wlan driver/fw ver info 
wlan driver/fw version are set at property at enforcing mode.
Add rules to allow to set wlan driver/fw version info

CRs-Fixed: 2460816
Change-Id: Ic0bb570cd53fe450512496c5864f432ce3219bbe
 2019-05-28 20:44:09 +05:30
Amareswar Reddy Valasa
21e39ad540 Sepolicy: add rule for seempd 
[ 22.106248] type=1400 audit(428.119:82): avc: denied { search } for
comm="seempd" name="seemp" dev="dm-0" ino=835653 scontext=u:r:seempd:s0
 tcontext=u:object_r:seemp_data_file:s0 tclass=dir permissive=0


Change-Id: Id36a6ed86a60644929bc907b7ceb58b843083283
 2019-05-28 16:36:10 +05:30
qctecmdr
e159097d13 Merge "sepolicy: Allow read for avextension debug property" 2019-05-28 03:02:41 -07:00
qctecmdr
cc5fa63528 Merge "sepolicy : clean-up of netd_socket usage." 2019-05-28 00:46:25 -07:00
Brijesh Patel
5b813bd3f4 sepolicy: Allow read for avextension debug property 
- Multiple processes and applications use avextension
  directly or indirectly causing property read denials
  for debug property.

Change-Id: Ibe71b00b71b010c8032a563638debea7990057a6
 2019-05-28 00:28:03 -07:00
Ravi Kumar Siddojigari
4cb4eee99e sepolicy : clean-up of netd_socket usage. 
As public defination of netd_scoket is removed removing all the
references to this.

Change-Id: I752d1d546d5d6e76dc4e43fc3d4a90b0aca077c8
 2019-05-28 11:47:01 +05:30
qctecmdr
bd64e5e5d2 Merge "sepolicy: add device sepolicy rule for NNHAL-1.2v" 2019-05-27 22:34:05 -07:00
qctecmdr
7191695bde Merge "sepolicy: add rules for imshelper_app" 2019-05-27 04:56:35 -07:00
qctecmdr
94af206963 Merge "sepolicy : Remove deprecated smcinvoke_daemon" 2019-05-27 02:41:16 -07:00
Devi Sandeep Endluri V V
6a63afe092 sepolicy: add rules for imshelper_app 
Add rules to allow imshelper_app to search
radio_data_file

Change-Id: I1184833d2cde889292aa4cf205e748cecb23ae3c
 2019-05-27 00:37:30 -07:00
qctecmdr
c2bc90639c Merge "sepolicy : Remove deprecated smcinvoke_daemon" 2019-05-27 00:35:59 -07:00
Anmolpreet Kaur
f2d9e37035 sepolicy : Remove deprecated smcinvoke_daemon 
smcinvoke daemon will no longer be available in system.
Sepolicy rules are not needed to be defined as smcinvoked
is deprecated from system.

Change-Id: I19bcfc36aed1ed0ae28739b9428127faec7b65b4
 2019-05-27 12:04:50 +05:30
Anuj
eca40c74e6 sepolicy: msmnile: Add vehicle hal rules for Q bringup 
Change-Id: Ic389c51cf3b9bf63a4be158e055321776cb05b30
 2019-05-26 21:11:31 -07:00
Tharaga Balachandran
3dd3609333 sepolicy: Add policies for mapper and allocator 
CRs-Fixed: 2451972
Change-Id: I3415b9672066bdbd6726fcd32b165980b0c7eeca
 2019-05-24 11:53:40 -07:00
Vishawa Raj Singh
26e7f29bdf sepolicy: add device sepolicy rule for NNHAL-1.2v 
Updated rules for legacy targets from generic targets

Change-Id: I1128703a8303d5359c3a28329a7f3c3f091d9d44
 2019-05-24 16:50:43 +05:30
Amareswar Reddy Valasa
169b91dfa7 sepolicy : Remove deprecated smcinvoke_daemon 
smcinvoke daemon will no longer be available in system.
Sepolicy rules are not needed to be defined as smcinvoked
is deprecated from system.

Change-Id: I7a52b1f282744d6845d6b7270adcff9ccc39842b
 2019-05-24 15:55:21 +05:30
Chinmay Agarwal
f847c3d887 sepolicy : add sepolicy rule to avoid avc denials 
Signed-off-by: Chinmay Agarwal <chinagar@codeaurora.org>
Acked-by: Sumedha Shenolikar <sshenoli@qti.qualcomm.com>

Change-Id: I53b2cc9ce3474ef64857bd56ad39e8286cc6eeae
 2019-05-23 23:26:20 -07:00
Jilai Wang
530c3e89b0 sepolicy: add SE policy rules for hta runtime libraries 
Add hta runtime libraries to file_contexts for allowing applications from
data partition to link to them.

Change-Id: Ib6318f59fd1b0f7d462f587721d90bd3c1f909b0
 2019-05-23 16:17:45 -04:00
Ravi Kumar Siddojigari
0875429068 sepolicy : remove duplicate defination of uefi_block_device 
As definition of uefi_block_device  been moved to common
removing this definition from other target specific folders

Change-Id: I9d9420125a7d0dc4ee78763081bd7865c1cf3a6d
 2019-05-23 18:45:57 +05:30
qctecmdr
07a510a630 Merge "sepolicy: Add SEPolicy for Power 1.2 HAL service" 2019-05-22 11:11:03 -07:00
qctecmdr
1746d28635 Merge "recovery: Add non-ab dynamic partitions policies" 2019-05-22 04:49:59 -07:00
Tharun Kumar Merugu
747bd62df7 Sepolicy: Add vendor_adsprpc_prop to app.te 
Add vendor_adsprpc_prop to app.te

Change-Id: Iadd721e6face7badcd1472abc4759dd8a366444f
 2019-05-22 14:30:56 +05:30
Ravi Kumar Siddojigari
06ac6020da sepolicy : add binder call from system_app-> update_engine 
As part of gota testing for addressing following denial.
type=1400 audit(0.0:431): avc: denied { call } for
scontext=u:r:system_app:s0 tcontext=u:r:update_engine:s0 tclass=binder permissive=0

Change-Id: Ica6e91ac202cafd203c503bacd65d7bc8e256d6b
 2019-05-22 13:49:33 +05:30
padarshr
0a4914f674 recovery: Add non-ab dynamic partitions policies 
With dynamic partitions enabled, recovery, while doing non-a/b ota
needs read access to sysfs_dm, allow the same.

Change-Id: I98d3d2421ffd49df1d2b84bb42cab9ee529d530a
 2019-05-22 01:05:33 -07:00
qctecmdr
b291856fc9 Merge "Add support for" 2019-05-22 00:00:07 -07:00
richagar
5c0dd72f17 sepolicy: Adding permissions for nfc 
Adding perf hal permissions to nfc.te
for legacy and qva

Change-Id: Ic62e0cff34fb7af1778239c1d436a3a25c0cfc01
 2019-05-22 12:21:29 +05:30
Mulugeta Engdaw
6310eac02a Add support for 
1. Fastbootd to flash physical and logical partitions
2. Update engine to update newly created partitions
3. Change the label for the super block device

Change-Id: I4c38960e2cbacd3bfe81208d6f451ab09e7b3943
 2019-05-21 22:06:55 -07:00
Tyler Wear
57528806a2 iwlan: Logging Property 
Add runtime property to enable logcat logging for iwlan services.

Change-Id: I41d1129611a8026ae2943c77492715c3eca975b2
 2019-05-21 16:01:46 -07:00
qctecmdr
a233a885d6 Merge "sepolicy: Add rule for audioserver to find audio_service" 2019-05-21 11:34:59 -07:00
Ananth Raghavan Subramanian
d1f4773fb1 sepolicy: Add SEPolicy for Power 1.2 HAL service 
Change-Id: Ifd78b40bf597dc02ca2ca3a8e471b348f72f8c4a
 2019-05-21 11:17:47 -07:00
qctecmdr
04c14f1d19 Merge "Sepolicy: Add selinux permission for QtiMapper interface." 2019-05-21 09:36:08 -07:00
qctecmdr
93114e2f63 Merge "sepolicy : startup scripts are given permission to read /proc/meminfo" 2019-05-21 02:29:14 -07:00
Ashish Kumar
47a514ed91 Sepolicy: Add selinux permission for QtiMapper interface. 
CRs-Fixed: 2451646
Change-Id: Ic909d367ac4bec149451b1fb68b400f27c62491f
 2019-05-21 13:57:17 +05:30
qctecmdr
8844b19e03 Merge "sepolicy: Add persist file access rules for USTA test App" 2019-05-21 00:17:27 -07:00
Arun Mirpuri
0d8f1a137c sepolicy: Add rule for audioserver to find audio_service 
Add rule for audioserver to find audio_service for AAudio usecase

Change-Id: I86772100c02d523d3108a13dd8daec2f9c1d27b5
 2019-05-20 17:10:45 -07:00
qctecmdr
4a93f74008 Merge "Sepolicy: Set genfs context for modem restart_level" 2019-05-20 14:26:03 -07:00
Eric Chang
22585dcd63 selinux: Add permission for qtidataservices to call location 
Change-Id: I3742196a3a5c9f1ff66ec34eedfac5b879928e3a
 2019-05-20 10:48:20 -07:00
vishawar
00f64065c3 Added device sepolicy rules for NN HAL data files for kona 
Change-Id: I8d5daa58201fd72a5a88670f7c97e8e681ad2bf3
 2019-05-20 05:31:14 -07:00