tequilaOS/platform_device_qcom_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
3500 commits 1 branch 0 tags 4.5 MiB
Commit graph

624 commits

Author SHA1 Message Date
qctecmdr
fbe4b37b7f Merge "sepolicy: Enable wfdservice as 32 & 64-bit executable" 2021-06-24 00:12:13 -07:00
Manoj Basapathi
dc41715794 sepolicy : add attributes to data HALs 
-Update sepolicy attributes to data factory,
cacert and iwlan service HALs.

CRs-Fixed: 2971946
Change-Id: Ifc13d8d5329e6f3de6c88d1f519039b467c72cb2
 2021-06-15 17:26:08 +05:30
Mahesh Raja Bhogineni
ed63f3aab9 sepolicy: Enable wfdservice as 32 & 64-bit executable 
Change-Id: I4509a4a619e555f5f78b7c2996baed8f4a899bd4
 2021-06-07 17:20:27 +05:30
Taiyab Haque
639c212528 QESDK: SELinux policy for QESDK 
SELinux rule for QESDK
CRs-Fixed: 2933136

Change-Id: I3754a9e201b780d7f3628e996578b90d10caa5b1
 2021-06-02 23:27:28 +05:30
appadura
6f7bb5ada1 qvirtmgr: Define selinux qcrosvm type & policies 
Change-Id: I26a0f48fa7e9da2ab67728a75651ab2a4e53310b
 2021-05-31 17:15:39 -07:00
Sanjeev Mittal
e1a5a4b3cb Initial changes for mstat app 
Change-Id: I0881a937374f5833e51b92f725a1547c9957fcbb
 2021-05-24 14:17:49 -07:00
Manoj Basapathi
26db04a735 sepolicy: Add tcmd socket connect rules to system_app. 
-Allow access to system_app by tcmd socket connect rules.

CRs-Fixed: 2943085
Change-Id: I62dc08dd3fe27476c4d06d7c099ff82558de8ad9
 2021-05-11 21:51:27 -07:00
Vidyakumar Athota
9c76b3e95f sepolicy: add hal_audio_client typeattribute in voiceui_app 
Add hal_audio_client attribute in voiceui_app instead
of hal_client_domain to fix compilation errors.

Change-Id: Ia475e9703245d60efa911f9d8bb36cca420b3466
 2021-05-08 09:39:25 +05:30
Aditya Bavanari
28ad0d9ac1 sepolicy: Create new domain for Voice UI App 
Create a new domain for Voice UI App to access ListenSoundModel
HIDL interface APIs.

Change-Id: Id4f06b96676beea245cce809b33002048554bf3f
 2021-05-05 07:58:11 -07:00
qctecmdr
405c3610a7 Merge "sepolicy: fix avc denial of system_data_file search" 2021-05-05 01:33:43 -07:00
Manoj Basapathi
c33554357d sepolicy: fix avc denial of system_data_file search 
add rule to fix avc denial of system_data_file search.

CRs-Fixed: 2938005
Change-Id: I42f30400bef6d924f1a49ea7ec529ab63f281194
 2021-05-05 12:59:32 +05:30
Sauvik Saha
946bbcd057 sepolicy: ims: Add hal_ims_factory attributes 
Add hal_ims_factory server and client attributes

Change-Id: I54b118c55f296f232330d6af35965f54787a539f
 2021-05-04 11:08:59 +05:30
Mulugeta Engdaw
e0032bd9cf QESD: add attributes for qesd hal 
Change-Id: I45c3f1ff8a51f6ab28cfeddbbdeb227fba97ebd2
 2021-04-26 14:53:08 -07:00
qctecmdr
880866b726 Merge "SE policy change for IQtiRadio Stable AIDL" 2021-04-21 12:24:03 -07:00
Avinash Nalluri
f96b6db49a SE policy change for IQtiRadio Stable AIDL 
Change-Id: I9ba0c6e64df3e58ea772797d6a3f819823b128aa
CRs-Fixed: 2925532
 2021-04-16 10:22:25 -07:00
Jaihind Yadav
56367052ad moving qti-test-script to private dir 
Change-Id: I28c46c706b137ee63bc4e87b9f47b62d63e9aa00
 2021-04-15 12:57:47 -07:00
Manoj Basapathi
292ea20060 sepolicy: enable tcmd 
add socket connect rules for tcmd.

we can enable and disable tcmd feature by setting
persist.vendor.tcmd.feature to 1 and 0.

Change-Id: Ia298e37884d2a3d4626550df1a64dff0e53d14f5
 2021-04-12 23:08:58 +05:30
Shawn Shin
aab05e87df sepolicy:qcc: allow IPerf 
avc:  denied  { find } for interface=vendor.qti.hardware.perf::IPerf
sid=u:r:vendor_qcc_netstat_app:s0:c202,c256,c512,c768 pid=3430
scontext=u:r:vendor_qcc_netstat_app:s0:c202,c256,c512,c768
tcontext=u:object_r:vendor_hal_perf_hwservice:s0 tclass=hwservice_manager permissive=0

avc: denied { search } for comm="omm.qti.qcclmtp" name="0" dev="dm-10" ino=504
scontext=u:r:vendor_qcc_lmtp_app:s0
tcontext=u:object_r:system_data_file:s0:c512,c768 tclass=dir permissive=0

avc: denied { search } for comm="omm.qti.qcclmtp" name="0" dev="dm-10" ino=500
scontext=u:r:vendor_qcc_lmtp_app:s0
tcontext=u:object_r:user_profile_root_file:s0:c512,c768 tclass=dir permissive=0

Change-Id: I335aebb35025ae0f3533c4f93d34cfb3dd381783
 2021-04-05 13:22:19 -07:00
qctecmdr
99f75a3fe8 Merge "sepolicy: Add netflix custom property" 2021-04-04 23:24:17 -07:00
Eric Chang
b97a114d2f sepolicy: Allow tethering service 
Change-Id: I84942de1e2a5ad92e2dcc006a00322a1e96f649b
 2021-04-02 13:10:05 -07:00
qctecmdr
25e8cbe2a1 Merge "moving qti-testscript domain out of debug macro" 2021-04-02 07:26:08 -07:00
Shrikara B
844b45d114 sepolicy: Add netflix custom property 
Add netflix custom property in vendor_exported_system_prop.
This property is set during vendor_init and used by
Netflix app to whitelist the targets

Change-Id: I9be42258cbbb4a7452569457539e41f2007ae4ae
 2021-04-01 06:19:39 -07:00
Jaihind Yadav
5af336c1ea moving qti-testscript domain out of debug macro 
Change-Id: I2dc2f404ab17bb78d0319411259c9234cf43cb03
 2021-03-22 16:53:00 +05:30
Phani Deepak Parasuramuni
6d013d5ae0 sepolicy:qcc: Add sepolicy for NetworkStat collector app 
Change-Id: I7e5beac6db1f25784f7aac0d9ec56f14c2b44726
 2021-03-18 06:35:22 -07:00
qctecmdr
2e9a6f20c5 Merge "qcc: qccsyshal ver 1.1" 2021-03-17 13:31:21 -07:00
Sukanya Rajkhowa
5e99b7657f IMS Stable AIDL: SE policy change. 
Change-Id: Ida7c9b9ef4bd33e705935aa18e4ac9a720e71c47
CRs-Fixed: 2894810
 2021-03-16 23:28:36 -07:00
Shawn Shin
29f24d8bb4 qcc: qccsyshal ver 1.1 
to add version 1.1

Change-Id: I381465350dd670e9a61e85c627f1e05949a55262
 2021-03-16 10:35:41 -07:00
Shawn Shin
7597585280 sepolicy: fix avc denial of system_data_file 
fix avc denials of system_data_file and IPerf

avc: denied { search } for comm="alcomm.qti.qdma" name="0" dev="dm-10" ino=496
scontext=u:r:vendor_qcc_app:s0 tcontext=u:object_r:system_data_file:s0:c512,c768
 tclass=dir permissive=0
avc: denied { find } for interface=vendor.qti.hardware.perf::IPerf
sid=u:r:vendor_qcc_lmtp_app:s0 pid=6078 scontext=u:r:vendor_qcc_lmtp_app:s0
 tcontext=u:object_r:vendor_hal_perf_hwservice:s0 tclass=hwservice_manager
 permissive=0

Change-Id: I6a53c353d4429fa8b6d05b5cd411b5efa8c0cc8c
 2021-03-12 14:10:24 -08:00
qctecmdr
068e70349f Merge "Add LocAidlGnss service in hal_gnss_service domain" 2021-03-09 19:09:37 -08:00
Manoj Basapathi
1e4e9d7283 sepolicy : tcmd system sepolicy rules 
-DPM system module movement to vendor
-DPM native module which was in system module moved it to vendor
and redesigned DPM code to meet the backward compatibility.
-dpmservice HAL is introduced to communicate between system
dpmserviceapp and vendor.dpmd module.
-DPM tcmd module is introduced in system partition to handle tcm call
back events from vendor.dpmd
-"persist.vendor.dpm.vndr.feature" is used to control vendor.dpmd
feature
-update sepolicy rules for tcmd system daemon.

CRs-Fixed: 2887227
Change-Id: I149fcb6bdda4cce689a9371aebe6c851e2971dc7
 2021-03-09 03:15:47 -08:00
haohuang
bb50ca6deb Add LocAidlGnss service in hal_gnss_service domain 
Add LocAidlGnss in hal_gnss_service domain to allow
LocAidlGnss to add AIDL services in ServiceManager &
allow LocAidl clients to find & bind LocAidlGnss services.

Change-Id: I08810af32d6bf195005e2fdb44a4c59e4cf2157a
CRs-Fixed: 2871416
 2021-03-09 13:57:20 +08:00
qctecmdr
abc32f5d7e Merge "Telephony: Add below modules to vendor_qtelephony domain" 2021-03-08 10:33:46 -08:00
sumishar
9c23e94083 Permission to access binderfs for binder info 
Change-Id: If386da636f084c2c67ee6323300aae0c2ac75bc5
 2021-03-04 16:29:11 +05:30
Sandeep Gutta
492733a79e Telephony: Add below modules to vendor_qtelephony domain 
Add below modules to vendor_qtelephony domain to be able
to access radio HIDL interfaces

 -uimgbaservice
 -remotesimlockservice
 -DeviceStatisticsService

Change-Id: Ie8a7e87fa70f0a4757d8a5aebb5fa26c217b0554
CRs-Fixed: 2887273
 2021-03-01 13:46:21 +05:30
qctecmdr
7d5102b4a9 Merge "Revert "Add domain and selinux policy for sxrservice"" 2021-02-24 12:51:27 -08:00
Biswajit Paul
37178d6756 Revert "Add domain and selinux policy for sxrservice" 
This reverts commit c4f145a3bf.

Change-Id: Ic256a6f30ee1b7d470486ac6cd22938bc7591890
 2021-02-24 12:27:34 -08:00
qctecmdr
15d82e8cfc Merge "sepolicy: Add sepolicy for IDisplayConfig AIDL" 2021-02-17 13:25:40 -08:00
Aditya Raut
c4f145a3bf Add domain and selinux policy for sxrservice 
Change-Id: Id235ebd7f36f147d2ba485fd9f72326330db2dfe
 2021-02-17 00:19:51 -08:00
Rheygine Medel
aefe85c35d sepolicy: Add sepolicy for IDisplayConfig AIDL 
This change adds the sepolicy for IDisplayConfig AIDL that will
allow the service to run.

Change-Id: I3409a9dc846fce40f634c29f46015c80bbb27638
CRs-Fixed: 2872254
 2021-02-15 13:46:26 -08:00
jkalsi
14def69239 sepolicy qcc : Add system dir search permissions 
Change-Id: Ic953620036199ef441978f57a9411c4460c8bc0a
 2021-02-14 23:38:32 -08:00
Malathi Gottam
1758e1a7c4 sepolicy: add new vendor defined media system property 
New media property is added to be accessed for target based
codec xml selection.

Change-Id: If321b72a22bb9ec0fc76600b15789dbca6f7db30
 2021-02-03 20:06:16 +05:30
jkalsi
bbfafaa878 sepolicy : add vendor_hal_perf for qcc_lmtp_app 
system side changes

Change-Id: I7ed72217e2edd20aae06f07382eeb77c53ed8962
 2021-02-01 01:46:25 -08:00
Malathi Gottam
8f6a5349d7 sepolicy: make vendor parser property public 
Vendor parser property which is extended core prop is made public.

Change-Id: Id7703007a156f8e912bc531e6e1246386aab09cd
 2021-01-24 12:49:29 +05:30
qctecmdr
e855b1f916 Merge "sepolicy: Add properties for powermodule HAL" 2021-01-21 21:30:03 -08:00
Sridhar Kasukurthi
b4470283a6 sepolicy change for ExtTelephonyService 
Change-Id: I9ccf9dbd316d23540523a981c13afb78e3b85e73
CRs-Fixed: 2831956
 2021-01-21 03:52:56 -08:00
Vini Vennapusa
7a08f6e490 sepolicy: Add properties for powermodule HAL 
Added properties/attributes for powermodule HAL.

Change-Id: I75b7c4d5e4a5fb060ac222d403e258ce451bdc20
 2021-01-15 04:37:53 -08:00
Varun Arora
33ee3e9a67 IDemuraFileFinder sepolicy attributes 
Add attributes for Demura HAL

Change-Id: I58e0f5d273e0c9c51200850edd7ae668e0937567
 2021-01-14 15:27:31 -08:00
Jaihind Yadav
fdfc71f612 backporting the changes. 
some of the changes were merged in the comp while merging
backward comptibility changes  so we are backporting it.
we are also removing unwanted types/attr from system_ext_pub_versioned.cil.

Change-Id: I131d073510c31af4b90b81eb154ad5529e822a2a
 2021-01-04 03:42:55 -08:00
Malathi Gottam
9c45ef48d5 sepolicy: make vendor parser property public 
Vendor parser property which is extended core prop is made public.

Change-Id: I3d1d34c4a9174d7f7231483fe3dfae356bb71708
 2020-12-31 20:31:31 +05:30
Jaihind Yadav
7d42dff1e4 moving changes from qva to generic 
1- as system side vendor customization can go to product/system_ext
partition so i think there is no need to keep qva so moving the
changes from qva to generic.

2- adding prebuilts dir for system_ext and product.

Change-Id: I5164a313f7c784e0948ab933dfa6a9581a94b863
 2020-12-24 11:02:04 +05:30