tequilaOS/platform_device_qcom_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
3342 commits 1 branch 0 tags 4.5 MiB
Commit graph

3342 commits

This branch
This branch
All branches
Author SHA1 Message Date
Sahil Chandna
4cab791acf sepolicy: Remove labels for usbpd and power_supply properties 
Remove the regular expression labels for usbpd and power_supply properties.
This helps in overall reduction in boot time.

Change-Id: Ica22cab57f1d0bb93315b74c6dee52a06f2c2855
 2020-04-25 21:19:30 +05:30
qctecmdr
ef73255fb9 Merge "sepolicy: Add rules for vendor_dataservice_app" 2020-04-24 08:57:51 -07:00
Varun Arora
b2ecc38c2d Update hw recovery rules 
Change-Id: Iedcacf65444ee5a4f2a3351645b240249fd4b0d9
 2020-04-23 12:59:31 -07:00
Ayishwarya Narasimhan
7689d8b793 sepolicy: Add rules for vendor_dataservice_app 
Change-Id: I614556e7f081894d8352278f11d1140916d7d5ad
 2020-04-23 11:14:44 -07:00
qctecmdr
e94fb5a533 Merge "sepolicy: Add DPM socket connect rules to gmscore_app." 2020-04-23 03:20:30 -07:00
Rajshekar Eashwarappa
f479e5ffb0 Revert : Allow fastbootd to access power_supply, usb nodes. 
This change allows fastbootd (for healthd) to access
the power_supply and usb nodes.
Revert of: Ib5c637b28dd65c6958778b02c3026c90b39fe713

Change-Id: I992165d490438f7ff7c73cb4b0e57442fdda8c02
 2020-04-22 13:09:15 -07:00
Manoj Basapathi
efc42dfbcc sepolicy: Add DPM socket connect rules to gmscore_app. 
-Allow access to gmscore_app by DPM socket connect rules.

Change-Id: I6850d1aa69f88d4a312a5fbd2e4152775d3ffa1d
 2020-04-22 19:01:03 +05:30
qctecmdr
9419b1e8cf Merge "mdm-helper: Add rule for probing ramdump access path" 2020-04-22 04:38:29 -07:00
qctecmdr
a5a2c0f6e0 Merge "sepolicy: remove seemp rule from app.te" 2020-04-22 01:11:33 -07:00
qctecmdr
d3999eda8f Merge "QTI: Creation of UDP sockets throws avc denial after modem SSR" 2020-04-22 01:11:33 -07:00
qctecmdr
374e0a3352 Merge "sepolicy: add permissions to shsusrd to use qipcrtr" 2020-04-21 10:20:30 -07:00
qctecmdr
3cbeaf220f Merge "sepolicy: create domain and file context for shsusrd" 2020-04-21 06:09:53 -07:00
qctecmdr
b35317dabc Merge "sepolicy: allow netmgrd to access ipc logging" 2020-04-21 01:14:30 -07:00
Preeti Nagar
0d8ed0f597 sepolicy: remove seemp rule from app.te 
seemp module is disabled, removing rule from
app.te file.

Change-Id: I39e96cf6431d2bfb512bfeb0b05c54883f823eb0
 2020-04-20 23:14:48 -07:00
qctecmdr
042e6cb9e5 Merge "sepolicy: update bengal/genfs_contexts" 2020-04-20 13:56:20 -07:00
qctecmdr
b219390189 Merge "sepolicy: allow platform_app access to WLC Prop" 2020-04-20 09:30:29 -07:00
Subash Abhinov Kasiviswanathan
23e91506ec sepolicy: add permissions to shsusrd to use qipcrtr 
Add shsusrd permission to use qipcrtr socket for qmi messaging.

Change-Id: If41fcc8cc94e211fdef8b30935a633c35546818b
 2020-04-19 23:43:40 -06:00
Subash Abhinov Kasiviswanathan
6002f11d6d sepolicy: create domain and file context for shsusrd 
Create a new domain for shsusrd and file contexts for the log file.
Also permissions to access shared memory in /proc/shs and to
auto start with init.

Change-Id: I236003b72162e32b0f587b067176127388ab4748
 2020-04-19 23:43:00 -06:00
junj
ef433ed5d0 sepolicy: update bengal/genfs_contexts 
update bengal/genfs_contexts config

Change-Id: I1453930c0fa41e65765c300d42662642615658cb
 2020-04-19 03:35:46 +08:00
qctecmdr
375e6730cd Merge "sepolicy : inital sepolicy files for bengal config" 2020-04-18 04:49:12 -07:00
qctecmdr
1076527176 Merge "sepolicy:dontaudit gmscore_app" 2020-04-18 04:49:12 -07:00
qctecmdr
3fe361a0ac Merge "sepolicy: Fix avc denials for qspmhal" 2020-04-18 04:49:12 -07:00
qctecmdr
807026af59 Merge "sepolicy: move the FM sepolicy rules to qva" 2020-04-18 04:49:12 -07:00
qctecmdr
8d092761a8 Merge "sepolicy: Add rules for SystemHelper HAL" 2020-04-18 04:49:12 -07:00
qctecmdr
f436658286 Merge "sepolicy: Adding file_context for servicetracker 1.1" 2020-04-18 04:49:12 -07:00
Subash Abhinov Kasiviswanathan
8ea9ea39ef sepolicy: allow netmgrd to access ipc logging 
Allows search of ipc logging directory so kernel can open
ipc logging files indirectly triggered from  netmgrd.

Change-Id: I263a4b251badd9e796a8cfc73b9de17915e7ddc6
 2020-04-17 15:14:34 -07:00
Skylar Chang
67d3865ba7 QTI: Creation of UDP sockets throws avc denial after modem SSR 
Sepolicy change to fix this denial

Change-Id: I53711c28813ce00b9fb59b072c88d1253cc9726f
 2020-04-17 14:11:36 -07:00
himta ram
6b29bd1248 sepolicy: move the FM sepolicy rules to qva 
FM App modules are built into system_ext.Hence moving
sepolicy rules to qva.

Change-Id: Iccde6fc49c695854f0ce9dfefb6f518a71d73161
CRs-Fixed: 2664694
 2020-04-16 22:01:46 -07:00
Ravi Kumar Siddojigari
8bd081c817 sepolicy : inital sepolicy files for bengal config 
Inital sepolicy for bengal config.

Change-Id: I976434d9a61e53316636e099723de1d61e284ebe
 2020-04-15 23:01:02 -07:00
Gopal Krishna Shukla
f5d8a251d9 sepolicy: Adding file_context for servicetracker 1.1 
Change-Id: I0bd02049410236fe4c273300298840780b63e04c
 2020-04-16 08:00:13 +05:30
Mohamed Moussa
e6404386d8 sepolicy:dontaudit gmscore_app 
This will silence AVC denials without allowing a permission by using dontaudit rules.

Change-Id: I222c696846a6a21452bd2ef7d3d283f9c6a85f51
 2020-04-15 12:27:18 -07:00
Linux Build Service Account
adb5e88916 Merge "sepolicy: Add label for QTI vibrator HAL V1.3 implementation service" into sepolicy.lnx.6.0 2020-04-15 06:03:12 -07:00
Linux Build Service Account
c067d4eacf Merge "sepolicy: Rename vendor soc_id and soc_name properties" into sepolicy.lnx.6.0 2020-04-15 06:03:10 -07:00
Karthik Gopalan
0a0b5e6fb7 sepolicy: allow platform_app access to WLC Prop 
allow platform_app to get/set WLC Prop.

CRs-Fixed: 2664383

Change-Id: I538c795ea6322f171975d59f77542e79e0dbd231
 2020-04-14 23:06:12 -07:00
Roopesh Nataraja
b8db03db5c sepolicy: Rename vendor soc_id and soc_name properties 
Change-Id: I0f7ae97ba9480c46b7a00598312089b9b7c39f05
 2020-04-13 11:10:10 -07:00
Nirmal Kumar
48f931a28f hal_bootctl : Update sepolicy for hal_bootctl 
-allow hal_bootctl_server to perform rawio
            -In 'user' builds rawio is not allowed for hal_bootctl_server domain.

Change-Id: I78bedd7aba25a58aba68748b80a1ebf810990860
 2020-04-13 11:05:17 -07:00
Rohit Soneta
fa67406408 sepolicy: Add rules for SystemHelper HAL 
Change-Id: I98ce0f491e1c80ef6d61aff68c192914fbf25073
 2020-04-13 13:35:48 +05:30
Manoj Basapathi
66a76e6891 sepolicy: allow vendor_init to set vendor_persist_dpm_prop 
Allow vendor_init to set vendor_persist_dpm_prop properties

Change-Id: Iea14b84299356d774090ee529da9560a16af449d
 2020-04-12 15:05:20 -07:00
qctecmdr
7dca2d831c Merge "Sepolicy: Comment out neverallow violations" 2020-04-11 13:18:16 -07:00
qctecmdr
c5cd53ddf0 Merge "Sepolicy: Allow bluetooth to access libsoc_helper" 2020-04-11 01:43:10 -07:00
qctecmdr
f31f365603 Merge "sepolicy: Add rules for QCV init rc and sh scripts" 2020-04-11 01:43:10 -07:00
Jack Pham
9f9a4af25e sepolicy: Allow init (recovery) to access USB sysfs 
Add genfs contexts for USB sysfs entries that control the
operational mode and assign them as vendor_sysfs_usb_device type.
Allow init context to access these paths for recovery mode.

Change-Id: Ic1f0c5e9237848ac47cebca6e2cbbe9bd25270ad
 2020-04-10 17:09:19 -07:00
Roopesh Nataraja
9074980d8a sepolicy: Add rules for QCV init rc and sh scripts 
- Add rules to allow execution of init.qti.qcv.sh
- Allow init.qti.qcv.sh to set_prop vendor_soc_name_prop
- Allow init.qti.qcv.rc to read vendor_soc_name_prop

Change-Id: I4f548bf0ab424dceba1d5b72c1ec8a596a037431
 2020-04-10 13:57:57 -07:00
Satish kumar sugasi
1f9ac5aeb5 Sepolicy: Allow bluetooth to access libsoc_helper 
Change-Id: Ife1537ad7954a42f6892e442abf1004e57ddf914
 2020-04-09 23:15:11 -07:00
Mohamed Moussa
cdddc3b151 sepolicy: Fix avc denials for qspmhal 
Change-Id: Ia34e3e3c6a7aa3e6ef55c48db13511d62726820f
 2020-04-09 18:21:20 -07:00
qctecmdr
f511f71e18 Merge "File context for vendor_boot in Lahaina - Use existing boot_block_device label for vendor_boot_[a/b] vendor_custom_ab_block_device cpucp_[a/b] & shrm_[a/b] " 2020-04-09 14:40:36 -07:00
qctecmdr
f306a2f80a Merge "sepolicy: add IVppService in sepolicy" 2020-04-09 14:40:36 -07:00
qctecmdr
051fa686ea Merge "sepolicy: add permissions for disabling zram slub-debug" 2020-04-09 14:40:36 -07:00
qctecmdr
c0ffc3fbb0 Merge "sepolicy: Correct sepolicy for secure camera service" 2020-04-09 10:48:13 -07:00
qctecmdr
1fd22f15a4 Merge "sepolicy: change mmi/mmi_diag path as moving to system_ext partition." 2020-04-09 10:48:13 -07:00