tequilaOS/platform_device_qcom_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
3691 commits 1 branch 0 tags 4.5 MiB
Commit graph

781 commits

Author SHA1 Message Date
Michael Bestas
f1f3174931
Merge tag 'LA.QSSI.14.0.r1-15700-qssi.0' into staging/lineage-21.0_merge-LA.QSSI.14.0.r1-15700-qssi.0 
LA.QSSI.14.0.r1-15700-qssi.0

# By Ashutosh Das (1) and vidyalak (1)
# Via Linux Build Service Account (2) and others
* tag 'LA.QSSI.14.0.r1-15700-qssi.0':
  sepolicy: Add sepolicy for newly added qspa prop
  Added SE-Policy rules for usbudev on Vendor-14

Change-Id: If373a0c5767e57a63f41401ecb68a82a7332ebe4
 2024-06-28 14:49:11 +03:00
vidyalak
5f8f5cfc02 sepolicy: Add sepolicy for newly added qspa prop 
- Allow the prop settable and gettable

Change-Id: I0c49df1d169e9e6790a2a38c877f78ba9ecf98ad
 2024-04-25 14:14:30 +05:30
Michael Bestas
7f068d5c3a
Merge tag 'LA.QSSI.14.0.r1-14000-qssi.0' into staging/lineage-21.0_merge-LA.QSSI.14.0.r1-14000-qssi.0 
LA.QSSI.14.0.r1-14000-qssi.0

* tag 'LA.QSSI.14.0.r1-14000-qssi.0':
  sepolicy: add permission of qvrcamservice in xrcb
  selinux: add sepolicy grouping for screen decoration prop

 Conflicts:
	generic/public/attributes

Change-Id: I2d8d3de61b6c6bd95dedd345865ace65129cb1ed
 2024-04-19 23:13:49 +03:00
qctecmdr
9c9ec91a94 Merge "Added SE-Policy rules for usbudev on Vendor-14" 2024-04-03 15:57:06 -07:00
Ashutosh Das
db2304977c Added SE-Policy rules for usbudev on Vendor-14 
Change-Id: Idc2e1ab8ddcaba096613f17313e53357072d0443
 2024-04-02 12:00:11 +05:30
qctecmdr
4958c416f6 Merge "sepolicy: add permission of qvrcamservice in xrcb" 2024-03-31 23:33:51 -07:00
Michael Bestas
2a95cd0b12
Merge tag 'LA.QSSI.14.0.r1-13400-qssi.0' into staging/lineage-21.0_merge-LA.QSSI.14.0.r1-13400-qssi.0 
"LA.QSSI.14.0.r1-13400-qssi.0"

# By Yashaswini Guvvala
# Via Anirudh Mahto (1) and Linux Build Service Account (1)
* tag 'LA.QSSI.14.0.r1-13400-qssi.0':
  sepolicy: add the attributes corresponding to the umdservice

Change-Id: Ie9316f453e57656f1d4d90acf4d763f29b93be86
 2024-03-29 11:58:44 +02:00
qctecmdr
268b8039b7 Merge "selinux: add sepolicy grouping for screen decoration prop" 2024-03-12 05:25:02 -07:00
zhw
aebf5198b2 sepolicy: add permission of qvrcamservice in xrcb 
Add attribute for qvrcamservice, and allow xrcb as
client of qvrcamservice.

Change-Id: Ia45bbcd2777888bde3865ffd94dc1d09e22a8064
(cherry picked from commit 7b2a2a2c139a64a04c89d4d67ce47805db25e26b)
 2024-03-10 23:14:53 -07:00
Devanshi Bansal
6c9c4b6421 selinux: add sepolicy grouping for screen decoration prop 
-- Set disable_screen_decorations prop from display init
   script.

Change-Id: I0b2f56dc632af280f83761955048c907f1a5bec3
 2024-03-01 14:05:26 +05:30
Yashaswini Guvvala
280a4bb7e1 sepolicy: add the attributes corresponding to the umdservice 
Change-Id: I1102eda821c08084eccbdd2162b68989aed7c628
(cherry picked from commit c9d7ea895c96ca0f4e300c7cac1268cadc966c20)
 2024-01-29 08:58:44 -08:00
Bruno Martins
69da3f7a54 Merge tag 'LA.QSSI.14.0.r1-11200-qssi.0' of https://git.codelinaro.org/clo/la/device/qcom/sepolicy into lineage-21.0 
"LA.QSSI.14.0.r1-11200-qssi.0"

* tag 'LA.QSSI.14.0.r1-11200-qssi.0' of https://git.codelinaro.org/clo/la/device/qcom/sepolicy:
  sepolicy: Add rule to allow WLC app to use QSPA HAL
  sepolicy: CACert system AIDL sepolicy changes
  sepolicy: add hexlp aidl service sepolicy.

Change-Id: I1476df7bf1d143f14581f3a1702de6346ad5f559
 2024-01-04 21:46:32 +00:00
qctecmdr
f809e031fa Merge "sepolicy: Add rule to allow WLC app to use QSPA HAL" 2023-11-24 02:32:36 -08:00
Jagadeesh Pagadala
9f5db93bf3 sepolicy: Add rule to allow WLC app to use QSPA HAL 
Workloadclassifier app is using QSPA HAL to query silver cpus.

Change-Id: I13da493d65df350135b86c00d2b085669bebc263
 2023-11-21 18:20:39 +05:30
Yashaswini Guvvala
18415c7c55 sepolicy: add the attributes corresponding to the umdservice 
Change-Id: I1102eda821c08084eccbdd2162b68989aed7c628
 2023-10-27 14:09:40 +02:00
quic_farenl
66fbd101af AKS: sepolicy for gamepad 
Change-Id: I8d0ece364154a09f6cb41780163e71e9ae10c416
 2023-10-26 11:08:52 +01:00
Michael Bestas
d5b1835abc
Move qti-testscripts definition out of userdebug_or_eng check 
sepolicy compat_test tests fail to compile on user builds because
of the missing definitions.

Test: breakfast FP4 user && m
Change-Id: I9e5ba85a48e757cdf45e90103b3ce10f22a912d0
 2023-10-20 01:19:53 +03:00
LuK1337
e482b17c58
generic: Add typeattribute definitions for 30.0 compat 
cp generic/prebuilts/api/30.0/private/compat/30.0/30.0.cil \
    generic/private/compat/30.0/30.0.cil
cp generic/product/prebuilts/api/30.0/private/compat/30.0/30.0.cil \
    generic/product/private/compat/30.0/30.0.cil

Change-Id: If3cfcfd0c35c95ecd53473b99d6e9cb6df4cc396
 2023-10-20 01:19:53 +03:00
Arian
709e83a4ed
generic: Don't dontaudit vendor_persist_camera_prop read denials 
This needs to be allowed in order for
I15910154c6df205e6d4e00bfad30a00c9e3d5bee to work. This will be
allowed in device/lineage/sepolicy.

Change-Id: Ie22121ee75e048bfa002d8980e15aeab1376f6b4
 2023-10-20 01:19:53 +03:00
dianlujitao
0a58051f8f
sepolicy: Unlabel aux camera whitelist prop 
* This will be properly labeled in device/lineage/sepolicy
   to make it readable to everything on every device

Change-Id: Idec6cad06c51ba73519f61e95c74e1c8915d301b
 2023-10-20 01:19:53 +03:00
Manoj Basapathi
56920032ed sepolicy: CACert system AIDL sepolicy changes 
CRs-Fixed: 3643023
Change-Id: I6ae0b4bdbbd80558592885cd3118f65a7864e05b
 2023-10-18 12:22:24 +05:30
Rui Wang
e29c90737c sepolicy: add hexlp aidl service sepolicy. 
Change-Id: Ib7e8fb8b20614b1958f54e4142cb43dd20ed44ea
 2023-10-09 01:17:07 -07:00
Roopesh Nataraja
4698670d6d sepolicy: Add rule to allow untrusted app to find qspm hal 
Add rule to allow unstrusted app to find qspm hal and be its client.

Change-Id: I53ba1309284dc130d673d1f2fb8f63db39927d5c
 2023-08-11 19:17:32 -07:00
Roopesh Nataraja
7cc766cc75 sepolicy: Add rule to allow untrusted app to find qspm hal 
Add rule to allow unstrusted app to find qspm hal and be its client.

Change-Id: I53ba1309284dc130d673d1f2fb8f63db39927d5c
 2023-07-31 15:58:15 -07:00
qctecmdr
6652255a6c Merge "rkapdapp: sepolicy to write tcmd socket." 2023-07-21 11:13:15 -07:00
Manoj Basapathi
6c28b8d4e9 rkapdapp: sepolicy to write tcmd socket. 
- any app using OkHttp stack needs tcmd socket access privilege.

- rkpdapp uses OkHttp stack, so it needs tcmd socket
 access privilege.

Change-Id: I0260936964caa8274490af69514b2cac9ac491fd
 2023-07-21 11:29:14 +05:30
Divyanand Rangu
00e3ac2928 sepolicy: allow lmkd to access lru_gen node 
Allow lmkd to read lru_gen node for making decisions
based on MGLRU enablememnt.

Change-Id: I0fe819baa166f793f52a8fc45529daad9d22770c
 2023-07-17 03:32:48 -07:00
Karra Harshitha
62a97e1b82 Adding sepolicy changes in attributes for qspa aidl 
Change-Id: I922ad9a30ad188a07a438c4b1698ff812ceedb8a
 2023-07-07 00:21:58 -07:00
Sandeep Gangadharaiah
0b9d71adfc sepolicy: Add perf_hal policy for mediaserver 
mediaserver service needs to access perf HAL APIs for boosting
performance during HEIF/thumbnails decoding. This change adds the
sepolicy to give permission access.

CRs-Fixed: 3499137

Change-Id: I8859de3af09b1ae592f543ce5531020bd20ec0e4
 2023-06-12 09:50:08 -07:00
qctecmdr
74e4e37701 Merge "sepolicy: allow binder transactions from lmkd" 2023-06-02 14:01:41 -07:00
Divyanand Rangu
69bfdb8587 sepolicy: allow binder transactions from lmkd 
Change-Id: I1eb5b951600744c9af4b76ef59d462c44af867f0
 2023-06-01 12:34:38 +05:30
Samyak Jain
ae681add1c Add rules to allow to set property 
Change-Id: I56fac5f23a27a3a71ef700569cd9c9429785ff15
 2023-05-31 05:48:10 -07:00
qctecmdr
d70fdccf9a Merge "hwbinder permission for qti testscript for diag binary" 2023-05-25 06:06:21 -07:00
qctecmdr
3f9d81b184 Merge "Integrate PhoneLink 14-3 sepolicy change" 2023-05-19 10:19:52 -07:00
qctecmdr
2ac92009f1 Merge "Allow dumpstate to getattr on vendor_vm_qti_system_file" 2023-05-19 03:49:43 -07:00
qctecmdr
a6e4a4fc6f Merge "DpmService system sepolicy rules for tcm" 2023-05-18 05:26:45 -07:00
Karra Harshitha
1af866422d Allow dumpstate to getattr on vendor_vm_qti_system_file 
Change-Id: Ic34993db1e8886b9869d375a34dd7afe1788cd6d
 2023-05-18 00:46:10 -07:00
Manoj Basapathi
116ad64c2b DpmService system sepolicy rules for tcm 
Change-Id: I537849a84a991f4f9d322234b89d3b7485311a5b
 2023-05-17 17:12:09 +05:30
PavanKumar S.R
5a34d01bab hwbinder permission for qti testscript for diag binary 
Change-Id: Idf1740fdb57fc2e6d723d7780a3ade9d801de949
 2023-05-17 16:32:07 +05:30
chawan
0acbdcc988 Integrate PhoneLink 14-3 sepolicy change 
Change-Id: I3682d3f79110baa61e9de7e39049313174c4b5df
 2023-05-15 10:49:48 +08:00
Anubhav
b4ce30e12d Sepolicy: To access QESDK's own data file 
Change-Id: I1ab1e5cd70383539fcfd98ca70b4d4b31607ec24
 2023-05-07 23:32:22 -07:00
Aleti Nageshwar Reddy
616756ac55 Add permission for system apps to access wifimyftm service 
Add sepolicy rule to allow system apps to access wifimyftm aidl
service.

Change-Id: I649f91fa146f6204961ac4e775ec2650cdf462fe
CRs-Fixed: 3472027
 2023-05-05 12:15:34 +05:30
Jason Wojcik
9cdd74001f Virtualization Service: Rust Implementation 
Change-Id: Ief96bf7dcf76bcf28cc60c34bbeb0db628018ae9
 2023-04-28 10:08:18 -07:00
Libo Jin
7d87edc645 Perf: dontaudit domain while reading vendor.perf.framepacing. 
CRs-Fixed: 3253303
Change-Id: I7d7865103f9b8e2f6ee9572a451f565c03a30d28
 2023-04-25 17:09:22 -07:00
Karra Harshitha
b98853022e Add sepolicy rule for init domain 
Add rule to allow read for vendor_vm_qti_system_file.

Change-Id: Ib0d035d8e11bcbcd654aa05a3d8c76460deb068f
 2023-04-21 04:42:47 -07:00
Kartik Mathur
c9e0d46cc2 SEPOLICY:Disable remote_prov_app for UP1A.230406.001 
Commenting remote_prov_app definition from remote_prov_app.te
for platform LKG UP1A.230406.001

Change-Id: I5086015fdf05b4956a3bfc543852aa1f50b93a8c
 2023-04-19 22:57:35 -07:00
Vamsi Krishna Gattupalli
cf14fad52b Added permission for untrusted app to dsp hal 
Added rule to give unstrusted app permission to
access DSP HAL.

Change-Id: I7a33e402de27d48a5856fd6c7c4c908e6f6a4a25
 2023-04-12 14:28:22 +05:30
Karra Harshitha
aab52cb7a8 Add sepolices to update engine domain. 
While applying OTA update package, update engine
loops through partitions entries/mountpoints.
Add rule to supress search for vendor_vm_qti_system_file.

Change-Id: I23622b14c0329ee24bf98fce81351119e46e1dea
 2023-04-10 22:32:16 -07:00
Anirudh Radhakrishnan
afb8ba7dca Added permission for untrusted app to dsp hal 
Added rule to give unstrusted app permission to
access dsp hal

Change-Id: I8655ebedec1a4065e17b3972c02f44d45f312890
 2023-03-30 22:37:04 -07:00
Swarn Singh
0cbe74eadd Add sepolicy for qtiwifiservice to interact with IWifi hidl 
This commit defines required sepolicy rules for qtiwifiservice apk to
interact with IWifi HAL.

Change-Id: Icabbee484129fc3e686d6c3076ccc87612ecc0fc
CRs-Fixed: 3282372
 2023-03-29 09:54:19 -07:00