tequilaOS/platform_device_qcom_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
3571 commits 1 branch 0 tags 4.5 MiB
Commit graph

3571 commits

This branch
This branch
All branches
Author SHA1 Message Date
Rohit Soneta
561a6cb426 sepolicy: Update sepolicy rules for seccamservice 
Change-Id: I698bf9d57c861f38ab4b414deb692f21607bdbc6
 2022-04-29 03:14:38 -07:00
qctecmdr
34278db4dd Merge "Sepolicy: allow PowerSaveMode app in UI to access system property." 2022-04-28 05:29:43 -07:00
qctecmdr
251782a8b7 Merge "sepolicy: Update sepolicy rules for seccamservice" 2022-04-26 00:49:08 -07:00
zehugong
df7469d4e4 Sepolicy: allow PowerSaveMode app in UI to access system property. 
Change-Id: I06d7f7f57af6f26c7327f42845dc0711899ab5ec
 2022-04-25 15:03:56 +08:00
qctecmdr
be45f3492a Merge "Allow untrusted apps to be client of the DSP HAL server" 2022-04-19 21:00:27 -07:00
Vamsi Krishna Gattupalli
313e9194d9 Allow untrusted apps to be client of the DSP HAL server 
Allow untrusted APK to be a client of the DSP HAL server on user
builds.

Change-Id: I20b7ac551a66d6e02a09d0a283209ae14786066b
Signed-off-by: Vamsi Krishna Gattupalli <quic_vgattupa@quicinc.com>
 2022-04-19 12:51:52 +05:30
qctecmdr
063f99d96c Merge "sepolicy: QCC package rename to com.qti.qcc" 2022-04-18 23:35:25 -07:00
qctecmdr
702b1a4b62 Merge "sepolicy: Add sepolicy for AtCmdFwd app" 2022-04-18 13:28:20 -07:00
Rohit Soneta
9559e2f564 sepolicy: Update sepolicy rules for seccamservice 
Change-Id: Ib76f6d936da45208d0e46dc68b17ab08948e46f4
 2022-04-14 01:53:48 -07:00
P.Adarsh Reddy
da05f122b6 Sepolicy: Add sepolicies for Qvirtmgr properties. 
Change-Id: I9fba0474a73331bcdfc6a230b1cd955847c3c698
 2022-04-14 12:43:23 +05:30
Phani Deepak Parasuramuni
9c9783a79f sepolicy: QCC package rename to com.qti.qcc 
Change-Id: I50654d7786d1e086e52bf6dec33ef9c407799d8c
 2022-04-11 10:30:29 +05:30
Sridhar Kasukurthi
efad11956d sepolicy: Add sepolicy for AtCmdFwd app 
Change-Id: I5b3bf28701a785988dcaaaf207a98d0d1cb3f002
 2022-04-01 13:47:02 +05:30
Shivam Agrawal
49fc190404 sepolicy: Allow wfdservice to access debug properties 
Change-Id: I30159d970c5cdc31c2c7f828dc76f838e644ee69
 2022-03-23 15:45:44 +05:30
Phani Deepak Parasuramuni
743d06f18a Sepolicy: make qccsyshal service file path generic in file_contexts 
Change-Id: I01af575c04a4911a249652316258d99a4655a50b
 2022-03-08 02:53:12 -08:00
Rui Wang
f8244c160c sepolicy: remove the permission for app to access qconfig. 
Change-Id: I730b067330fa606a26e014e0ac5b3737d43c0717
 2022-02-16 17:32:48 +08:00
Jaihind Yadav
7c3d92dfce creating 32.0.cil files and 32.0 prebuilt sepolicies. 
Change-Id: Ib92095628d41d2409ba951e01f0abd201338b30d
 2022-01-28 20:46:40 +05:30
qctecmdr
1649e15f5b Merge "Remove conflicting service to avoid bootup failure" 2022-01-20 05:33:04 -08:00
Suresh Koleti
850899fd1c Remove IImsRadio and IQtiRadioStable definitions 
- Remove IImsRadio, IQtiRadioStable and IQcRilAudio
  definitions as these needs to be defined in vendor
  to support GSI images.

Change-Id: Icfef4c5895ccae51374d83069ae93260be0f376c
CRs-Fixed: 3078236
 2022-01-18 22:26:54 -08:00
Zube Molokwu
d3c5ecc91b Remove conflicting service to avoid bootup failure 
Moving IDisplayConfig AIDL service to sepolicy_vndr in order to satisfy
VTS compliance.Removing this service from private/service_contexts to
avoid bootup failure on non GSI builds.

Change-Id: I2077dcfec71fd2b5a3d8dc970b1e3658e325847a
 2022-01-18 16:39:51 -08:00
Devendar Gali
fd0b9d688d NFC: FR74324, Add the new STM NFC extensions 
As a part FR74324 requirement, added the new STM NFC extensions.

Change-Id: Idce9ba00b4075aa9b769850297b80df83f9ba9b1
 2021-12-29 12:48:27 +05:30
Jaihind Yadav
7fb3761a9e adding <system_ext/product> versioned cil files. 
Change-Id: I24cd7430d9eca69472f1594a8ed24ada3dba2647
 2021-12-13 16:14:42 +05:30
qctecmdr
0540f3364f Merge "se-policy: Added permission for a new property support for WLC." 2021-12-10 01:39:04 -08:00
Ashish Jain
1fa36f96c0 se-policy: Added permission for a new property support for WLC. 
Added permission for a new property support for WLC.
This property is updated in vendor side to signal perf hal is up.

Change-Id: I7bf2e08b1b73aaa3b800c9ee8c8a6e459fd4ca0b
 2021-12-02 00:38:11 +05:30
Manoj Basapathi
ff8bd3acf1 sepolicy: allow platform to vendor tcmd 
fixes denials of
W TcmReceiver: type=1400 audit(0.0:730): avc: denied { connectto }
for path="/dev/socket/tcmd" scontext=u:r: platform_app:s0:c512,c768
tcontext=u:r:vendor_tcmd:s0 tclass=unix_stream_socket permissive=0
app=com.qualcomm.qti.qccvendortest

Change-Id: Ic8ae27b555758f9694981de82716e67b5e4d6c8b
 2021-11-09 11:50:36 +05:30
ysr
e4523f42f6 sepolicy: Update 31.0 sepolicy 
Change-Id: I5276ae85f151caf186953fa79dce7b3b307b7b63
 2021-10-07 16:04:50 -07:00
Jaihind Yadav
1edbb7d331 creating plat_pub_versioned.cil and vendor_sepolicy.cil for 31.0 
Change-Id: Id80c4d02550407d9d2b513f50de99ff104c7d308
 2021-10-06 18:55:14 +05:30
Jaihind Yadav
85a1c173c7 creating 31.0 preuilt sepolicy from android-S sepolicy. 
Change-Id: I562cf94dfe4bc722c56c9f64db006e7635f67f1e
 2021-10-06 18:46:10 +05:30
qctecmdr
597f2ec7f0 Merge "Remove violator rule in qvirtmgr." 2021-09-08 10:42:20 -07:00
qctecmdr
b9ab250e8e Merge "Sepolicy for ro.vendor.bootreceiver.enable" 2021-09-08 04:52:21 -07:00
Shashank Sivakumar
52459fc5c9 Remove violator rule in qvirtmgr. 
Change-Id: I07b27bfda84be137cf2307c6e31ac84ae97856e5
 2021-09-07 22:52:24 -07:00
Devanshi Bansal
92cfbbea7a sepolicy: add sepolicy for vendor_hal_displayconfig_service 
Change-Id: I81f432ffb4cc5513fcf91b53f0e1a7c5bc077cbd
 2021-09-07 20:48:45 -07:00
Divyanand Rangu
3bcc850a84 Sepolicy for ro.vendor.bootreceiver.enable 
Set sepolicy permissions to Allow ro.vendor.bootreceiver.enable
to be updated from vendor side init.

Change-Id: I2b4929b70a7eab398eb1e32dd3c0914841f6e47e
 2021-09-08 08:58:04 +05:30
qctecmdr
03b61db6f0 Merge "sepolicy: Allow kernel to access tracefs instances" 2021-09-07 17:53:09 -07:00
qctecmdr
a59c4a093c Merge "Add sepolicy to suppress the denials for vendor_persist_camera_prop" 2021-09-07 10:23:18 -07:00
Weijie Wang
4049c09d86 Allow radio_cdma_ecm_prop accessible to platform apps 
Change-Id: I3a94cd1f39715686fe7608e77df767e86fd844a9
 2021-09-06 22:47:22 -07:00
Qimeng Pan
ff33021ea5 Add sepolicy to suppress the denials for vendor_persist_camera_prop 
vendor_persist_camera_prop is not necessary for 3rd party apps, so
don't audit it for appdomain to suppress the denial logs.

vendor_persist_camera_prop is the context of below prop, which are
added to standard Android SDK APIs, so all app may touch it.
 - vendor.camera.aux.packagelist
 - persist.vendor.camera.privapp.list

Change-Id: I1198ed3c3441aec5a33f2b781d29100b9d4648af
CRs-Fixed: 3027102
 2021-09-06 21:06:33 -07:00
qctecmdr
d4135c5b49 Merge "sepolicy:qcc: read vendor_qcc_prop" 2021-09-06 16:10:12 -07:00
Kamal Agrawal
619ae9e2ac
sepolicy: Allow kernel to access tracefs instances 
Add policy to allow kernel to access tracefs instances.
Fix is for below error:
W kworker/u16:6: type=1400 audit(0.0:8): avc: denied { search } for
name="instances" dev="tracefs" ino=10847 scontext=u:r:kernel:s0
tcontext=u:object_r:debugfs_tracing_instances:s0 tclass=dir permissive=0

Change-Id: I306353ffbc2675a45bee14d17672fc8829cd374e
 2021-09-06 15:00:14 +05:30
Harikrishnan Hariharan
7a7141041d Allow location service to read property radio_cdma_ecm_prop 
Change-Id: Ie840160eb04420212ef5e20aa53b18f30834e641
CRs-Fixed: 3029071
 2021-09-04 11:01:19 +05:30
ShawnShin
4c26e7e4cb sepolicy:qcc: read vendor_qcc_prop 
add authmgr and netstat for vendor reference to read access to vendor_qcc_prop

Change-Id: I602dfa1b7a6887148fef96b3d7aeb796324363b2
 2021-08-30 15:18:43 -07:00
Swarn Singh
d5fde440c2 Add sepolicy support for qtiwifiservice platform_app 
This commit defines required sepolicy rules for qtiwifiservice apk
requires to interact with IWificfr HAL and wpa_supplicant HAL.

Change-Id: Iaacd7378866b20c65de3ea27a3ae5e08fa39a215
CRs-Fixed: 3020979
 2021-08-24 17:12:03 +05:30
Manoj Basapathi
80576d66be sepolicy : add attributes to mwqem Adapter HAL 
-Update sepolicy attributes to mwqem adapter HAL

CRs-Fixed: 3015739
Change-Id: Ia98a8ee27be9b8c4eebb6a075f4aee36b24797c9
 2021-08-19 17:29:28 +05:30
Samyak Jain
98536d139b selinux for sxrservice and sxrsplitauxservice 
add sepolicy for sxrservice and sxrsplitauxservice

Change-Id: If31f4fe36ce684b9937fca5507ef974a4457e7ae
 2021-08-16 10:24:17 +05:30
qctecmdr
8867713ddb Merge "sepolicy: Add policy to access Limits HAL by SF" 2021-08-10 12:22:58 -07:00
qctecmdr
c50c4df458 Merge "sepolicy: Add qesdk app domain as trusted subject" 2021-08-10 11:54:12 -07:00
qctecmdr
4e73661bc3 Merge "sepolicy: Add sepolicy changes for wificfr server" 2021-08-10 11:23:43 -07:00
Bipin Kumar
e13550c6e3 sepolicy: Add policy to access Limits HAL by SF 
Change-Id: Ia742cbdca593799eb23809d0aaccc0839411f69e
 2021-08-10 06:25:43 -07:00
Swarn Singh
d8a2147502 sepolicy: Add sepolicy changes for wificfr server 
Change-Id: I0f75e617f5aaba7da19ba846ee37d37afa80120a
CRs-Fixed: 2889522
 2021-08-05 15:01:48 +05:30
Benergy Meenan Ravuri
724e328df2 sepolicy: Add qesdk app domain as trusted subject 
Add qesdk app domain as trusted subject

Change-Id: Ie5378ed4a156afe54186b697f13e87492f52d291
 2021-08-04 23:47:04 +05:30
Kakarla Uday Kanth Reddy
68b77ec347 Add sepolicy rules under vendor_qtelephony domain 
Add sepolicy rules under vendor_Qtelephony domain for uimlpaservice
which connects with SMDP server for profile download via socket
connection

Change-Id: I29a3663f10c52f9bc6df3823ba5817e38ace11d3
 2021-08-03 06:44:28 -07:00