tequilaOS/platform_device_qcom_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
3472 commits 1 branch 0 tags 4.5 MiB
Commit graph

598 commits

Author SHA1 Message Date
Sukanya Rajkhowa
5e99b7657f IMS Stable AIDL: SE policy change. 
Change-Id: Ida7c9b9ef4bd33e705935aa18e4ac9a720e71c47
CRs-Fixed: 2894810
 2021-03-16 23:28:36 -07:00
Shawn Shin
7597585280 sepolicy: fix avc denial of system_data_file 
fix avc denials of system_data_file and IPerf

avc: denied { search } for comm="alcomm.qti.qdma" name="0" dev="dm-10" ino=496
scontext=u:r:vendor_qcc_app:s0 tcontext=u:object_r:system_data_file:s0:c512,c768
 tclass=dir permissive=0
avc: denied { find } for interface=vendor.qti.hardware.perf::IPerf
sid=u:r:vendor_qcc_lmtp_app:s0 pid=6078 scontext=u:r:vendor_qcc_lmtp_app:s0
 tcontext=u:object_r:vendor_hal_perf_hwservice:s0 tclass=hwservice_manager
 permissive=0

Change-Id: I6a53c353d4429fa8b6d05b5cd411b5efa8c0cc8c
 2021-03-12 14:10:24 -08:00
qctecmdr
068e70349f Merge "Add LocAidlGnss service in hal_gnss_service domain" 2021-03-09 19:09:37 -08:00
Manoj Basapathi
1e4e9d7283 sepolicy : tcmd system sepolicy rules 
-DPM system module movement to vendor
-DPM native module which was in system module moved it to vendor
and redesigned DPM code to meet the backward compatibility.
-dpmservice HAL is introduced to communicate between system
dpmserviceapp and vendor.dpmd module.
-DPM tcmd module is introduced in system partition to handle tcm call
back events from vendor.dpmd
-"persist.vendor.dpm.vndr.feature" is used to control vendor.dpmd
feature
-update sepolicy rules for tcmd system daemon.

CRs-Fixed: 2887227
Change-Id: I149fcb6bdda4cce689a9371aebe6c851e2971dc7
 2021-03-09 03:15:47 -08:00
haohuang
bb50ca6deb Add LocAidlGnss service in hal_gnss_service domain 
Add LocAidlGnss in hal_gnss_service domain to allow
LocAidlGnss to add AIDL services in ServiceManager &
allow LocAidl clients to find & bind LocAidlGnss services.

Change-Id: I08810af32d6bf195005e2fdb44a4c59e4cf2157a
CRs-Fixed: 2871416
 2021-03-09 13:57:20 +08:00
qctecmdr
abc32f5d7e Merge "Telephony: Add below modules to vendor_qtelephony domain" 2021-03-08 10:33:46 -08:00
sumishar
9c23e94083 Permission to access binderfs for binder info 
Change-Id: If386da636f084c2c67ee6323300aae0c2ac75bc5
 2021-03-04 16:29:11 +05:30
Sandeep Gutta
492733a79e Telephony: Add below modules to vendor_qtelephony domain 
Add below modules to vendor_qtelephony domain to be able
to access radio HIDL interfaces

 -uimgbaservice
 -remotesimlockservice
 -DeviceStatisticsService

Change-Id: Ie8a7e87fa70f0a4757d8a5aebb5fa26c217b0554
CRs-Fixed: 2887273
 2021-03-01 13:46:21 +05:30
qctecmdr
7d5102b4a9 Merge "Revert "Add domain and selinux policy for sxrservice"" 2021-02-24 12:51:27 -08:00
Biswajit Paul
37178d6756 Revert "Add domain and selinux policy for sxrservice" 
This reverts commit c4f145a3bf.

Change-Id: Ic256a6f30ee1b7d470486ac6cd22938bc7591890
 2021-02-24 12:27:34 -08:00
qctecmdr
15d82e8cfc Merge "sepolicy: Add sepolicy for IDisplayConfig AIDL" 2021-02-17 13:25:40 -08:00
Aditya Raut
c4f145a3bf Add domain and selinux policy for sxrservice 
Change-Id: Id235ebd7f36f147d2ba485fd9f72326330db2dfe
 2021-02-17 00:19:51 -08:00
Rheygine Medel
aefe85c35d sepolicy: Add sepolicy for IDisplayConfig AIDL 
This change adds the sepolicy for IDisplayConfig AIDL that will
allow the service to run.

Change-Id: I3409a9dc846fce40f634c29f46015c80bbb27638
CRs-Fixed: 2872254
 2021-02-15 13:46:26 -08:00
jkalsi
14def69239 sepolicy qcc : Add system dir search permissions 
Change-Id: Ic953620036199ef441978f57a9411c4460c8bc0a
 2021-02-14 23:38:32 -08:00
Malathi Gottam
1758e1a7c4 sepolicy: add new vendor defined media system property 
New media property is added to be accessed for target based
codec xml selection.

Change-Id: If321b72a22bb9ec0fc76600b15789dbca6f7db30
 2021-02-03 20:06:16 +05:30
jkalsi
bbfafaa878 sepolicy : add vendor_hal_perf for qcc_lmtp_app 
system side changes

Change-Id: I7ed72217e2edd20aae06f07382eeb77c53ed8962
 2021-02-01 01:46:25 -08:00
Malathi Gottam
8f6a5349d7 sepolicy: make vendor parser property public 
Vendor parser property which is extended core prop is made public.

Change-Id: Id7703007a156f8e912bc531e6e1246386aab09cd
 2021-01-24 12:49:29 +05:30
qctecmdr
e855b1f916 Merge "sepolicy: Add properties for powermodule HAL" 2021-01-21 21:30:03 -08:00
Sridhar Kasukurthi
b4470283a6 sepolicy change for ExtTelephonyService 
Change-Id: I9ccf9dbd316d23540523a981c13afb78e3b85e73
CRs-Fixed: 2831956
 2021-01-21 03:52:56 -08:00
Vini Vennapusa
7a08f6e490 sepolicy: Add properties for powermodule HAL 
Added properties/attributes for powermodule HAL.

Change-Id: I75b7c4d5e4a5fb060ac222d403e258ce451bdc20
 2021-01-15 04:37:53 -08:00
Varun Arora
33ee3e9a67 IDemuraFileFinder sepolicy attributes 
Add attributes for Demura HAL

Change-Id: I58e0f5d273e0c9c51200850edd7ae668e0937567
 2021-01-14 15:27:31 -08:00
Jaihind Yadav
fdfc71f612 backporting the changes. 
some of the changes were merged in the comp while merging
backward comptibility changes  so we are backporting it.
we are also removing unwanted types/attr from system_ext_pub_versioned.cil.

Change-Id: I131d073510c31af4b90b81eb154ad5529e822a2a
 2021-01-04 03:42:55 -08:00
Malathi Gottam
9c45ef48d5 sepolicy: make vendor parser property public 
Vendor parser property which is extended core prop is made public.

Change-Id: I3d1d34c4a9174d7f7231483fe3dfae356bb71708
 2020-12-31 20:31:31 +05:30
Jaihind Yadav
7d42dff1e4 moving changes from qva to generic 
1- as system side vendor customization can go to product/system_ext
partition so i think there is no need to keep qva so moving the
changes from qva to generic.

2- adding prebuilts dir for system_ext and product.

Change-Id: I5164a313f7c784e0948ab933dfa6a9581a94b863
 2020-12-24 11:02:04 +05:30
Manaf Meethalavalappu Pallikunhi
47f5af3b4a sepolicy: Add vendor limits hal attributes 
Change-Id: I19a50ae280f57b844c044b2161e64abc9d1de655
 2020-11-24 07:19:29 -08:00
Jaihind Yadav
fdb5938c0c making system/product restricted prop. 
making system/product restricted prop all the extendeded core prop defined in public.

Change-Id: Ic7374ee3ed141ce98f16a8b7fc29d8fedcd49149
 2020-11-24 16:38:32 +05:30
Siddeswar Aluganti
f3dcc6a9f1 Fix backward compatibility issue. 
Change-Id: Ie889dc1ad25da6e0a1ff812ee3dd793bd2363c93
 2020-11-12 13:04:56 -08:00
Wileen Chiu
2824781c25 Add QtiTelephonyService to vendor_qtelephony domain 
- QtiTelephonyService is moved from sharing phone
  process uid and needs to be moved into vendor_qtelephony

Change-Id: Ib7b341707daca8deadd2e5e634d4080732f3834f
CRs-Fixed: 2809413
 2020-10-30 11:29:42 -07:00
Biswajit Paul
9926eac1fd Add compatibility with previous Android versions. 
This change adds compatibility cil files for the previous android
version.

Change-Id: I4e40586df87de256d991d10c937c53f92cc55b44
 2020-10-28 18:16:59 -07:00
Jun Wang
a447e205ce sepolicy: Add more property rules for scroll optimization feature 
Allow apps to read the properties of scroll optimization feature.

Change-Id: Icd0526c1a905ff935e6d1828fd8a38644525380f
 2020-09-16 02:19:51 -07:00
kranthi
38ae21ce3a Adding new gfx developer tools service 
Adding new gfx developer tools service (qdtservice).

CRs-Fixed: 2772466
Change-Id: Ie534a866705c2870cf7be3afdfb39f022f85ed56
 2020-09-08 22:51:00 +05:30
Rajavenu Kyatham
532ce495a9 sepolicy: add sepolicy for new added display prop. 
- allow the prop settable and gettable.

Change-Id: If4e29c1a361197aedf30e0dfae47b19d2c81a5d6
CRs-Fixed: 2732534
 2020-08-06 03:02:15 -07:00
Sauvik Saha
58381329b1 ims: Adding diag permissions to telephony 
* Adding diag permissions for telephony

Change-Id: I8e6cb41f06f060eeb38890c5f943cb3a29e93744
 2020-07-22 11:40:19 +05:30
Jaihind Yadav
7a12159cc2 moving attributes from vendor to system_ext. 
Change-Id: Ife18fca781159959f3b6725660884a4df0c0ed6e
 2020-07-03 08:37:58 -07:00
David Ng
b4b1deebb4 Map /storage/emulated as media_rw_data_file 
Files inside /storage/emulated are labeled as media_rw
at runtime - but the policy is sdcard_file - match them.

Change-Id: Ie9d8890f0bf3bbcc84854f988aad8465d9c7cabc
 2020-06-26 15:07:49 -07:00
Rohit Soneta
2fd3cffbd8 sepolicy: Fix system helper HAL issue 
Change-Id: I8c518f6320f8674463ce5d7989f5f8be37c57978
 2020-06-24 15:35:22 +05:30
qctecmdr
b32ca80c52 Merge "sepolicy change for vendor_qtelephony domain" 2020-06-19 05:23:32 -07:00
Sridhar Kasukurthi
b1c710adb4 sepolicy change for vendor_qtelephony domain 
-All the apps sharing vendor_qtelephony domain are
 moved to system_ext partition. Move all the policies
 as well to system component inorder to set right
 dependencies to ota.

Change-Id: I3601930c9a8f644c609591b72a46d29514e0d134
CRs-Fixed: 2709200
 2020-06-19 11:58:21 +05:30
Jun Wang
9eaed3d140 sepolicy: add property rule for scroll optimization feature 
Allow apps to read the property to determine whether the scroll
optimization feature is enabled or not.

Change-Id: I7ffee73bd4de0283cdd67902f90d49122eb2fcaa
 2020-06-15 23:19:31 -07:00
Jaihind Yadav
1f7641cb96 modifying boarconfig.mk to pick system side sepolicy. 
removing vendor sepolicy from sepolicy this project as
it is moved to sepolicy_vndr project.

Change-Id: I03f185b2ababf068ff337a7873acec2fe1a8f069
 2020-05-23 22:38:57 -07:00
qctecmdr
26862522a4 Merge "sepolicy: Allow qti-testscripts to be killed by lmkd" 2020-05-23 19:47:59 -07:00
Linux Build Service Account
5bfd49e2ab Merge "sepolicy: adding dontaudit for vendor modprobe." into sepolicy.lnx.6.0 2020-05-13 00:21:14 -07:00
Linux Build Service Account
47d0180911 Merge "sepolicy: adding dontaudit for init_shell" into sepolicy.lnx.6.0 2020-05-13 00:21:12 -07:00
qctecmdr
4f7de76b6d Merge "sepolicy: allow sensors hal to read adsrpc properties" 2020-05-12 12:37:27 -07:00
qctecmdr
1ac3fa3433 Merge "sepolicy: adding getattr perm for init." 2020-05-12 09:41:36 -07:00
qctecmdr
4280ba1faf Merge "sepolicy: [AISW-7895] Allow gralloc for hardware buffer" 2020-05-11 22:25:47 -07:00
qctecmdr
c8a61ca0f7 Merge "sepolicy: Changes to allow kill capability" 2020-05-10 03:27:41 -07:00
Jun-Hyung Kwon
b41ca6dfa7 sepolicy: allow sensors hal to read adsrpc properties 
Change-Id: I6956b7d61339be4665a8d2af47b3c0ba2c88793e
 2020-05-07 16:12:45 -07:00
Shishir Singh
7029593aa7 sepolicy: Changes to allow kill capability 
-- Fix for netmgrd kill permission denial.

Change-Id: I4360fe357f9ff22ce2a690fcf613a0dba2bf26ec
 2020-05-06 02:42:59 -07:00
Santosh Mardi
2a9b25cad4 sepolicy: add support for separate dcvs script 
From android R version perf events need sepolicy permission,
move memlat related commands to separate new script as they
result in accessing perf events in kernel.

And add support in sepolicy for new script to give permission
for perf events.

Change-Id: I726bdecebec1a87656d2ef1c63198b1c5d0099f2
 2020-05-06 13:20:24 +05:30