tequilaOS/platform_device_qcom_sepolicy_vndr-sm8450
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
4548 commits 1 branch 0 tags 5.8 MiB
Commit graph

4548 commits

This branch
This branch
All branches
Author SHA1 Message Date
jiaoyuan
c0b44d398d Snapcam: change copyright for new file 
change copyright for new file

Change-Id: I9bf9b14667ced3fb760e75b4d9b397d4eb91efd5
 2022-01-06 09:32:03 -08:00
qctecmdr
2f7c03656c Merge "sepolicy: Update sysfs_net for mhi" 2022-01-05 17:01:42 -08:00
Linux Build Service Account
3d9330ba11 Merge a120840ed3 on remote branch 
Change-Id: I65a75cfb5024444a9ee65c2bedd5e363e1141c13
 2022-01-05 09:31:32 -08:00
qctecmdr
4db127d847 Merge "Neural Networks: Remove NNHAL-1.3 configuration" 2022-01-05 03:41:25 -08:00
Weiyi Chen
fc1301e654 sepolicy: Update sysfs_net for mhi 
Update sysfs_net for mhi net device.

Change-Id: I71599ceccf5c47d4ef8c28dd9e82969821e0c925
 2022-01-04 10:49:40 -08:00
PavanKumar S.R
e30aeb41dd sepolicy: Fix avc denials for wakeup nodes 
Label wakeup sysfs nodes listed by SuspendSepolicyTests.sh

Change-Id: Ica4b5f08ce1f7cf9f9580083d9e3e577b5a6b51e
 2022-01-03 10:59:47 +05:30
Linux Build Service Account
392b7e0f57 Merge "Updating file_contexts to be in sync with mainline" 2021-12-30 02:27:57 -08:00
Jaihind Yadav
a120840ed3 remove read permission for untrusted app to read device info. 
Change-Id: I6d04b70ad23a08176ab9fa2c559460a4e6009efa
 2021-12-28 23:19:53 -08:00
Jack Pham
9a2475b08c sepolicy_vndr: vendor-qti-testscripts: Allow reading vendor_usb_prop 
One particular script running under vendor-qti-testscripts context
requires calling `getprop persist.vendor.usb.enable_ftrace`. Add
permission for it to read vendor_usb_prop.

Change-Id: I06a477a166c7b3c6d97d4832478cc59c48790933
 2021-12-28 10:05:57 -08:00
Anjaneya Prasad Musunuri
b1203c1f08 sepolicy_vndr: Suppress QMCS related denial errors in ENG builds 
vold deamon tries to query the QMCS partition during bootup.
While this access is correctly denied, it results in errors.
For debug and ENG builds, suppress denial messages when the vold
context attempts to access the QMCS context.

Change-Id: Ibe9a153e5863ad13475bd777b221bbc8bbfb5893
 2021-12-28 04:52:27 -08:00
Varun Garg
e43055c08f sepolicy: Add rule for hw gplaf node 
Added rule for hw gplaf related node.

Change-Id: I61bd1d984a97c53e4e3a90ee242c9af101bbecad
 2021-12-28 03:45:53 -08:00
Rajashekar Adi
b0b589b96c Neural Networks: Remove NNHAL-1.3 configuration 
Remove NNHAL-1.3 configuration and references

Change-Id: I6041344fdd325151d78b78925de727146053463e
 2021-12-22 22:37:13 +05:30
harshj
c851ed9854 sepolicy: allow perf-hal to access lplh nodes under /kernel/msm_performance 
perf-hal needs to access launch perf lock hardening features nodes for controlling
enable, disable, and sending tunables.

Change-Id: Ia0e14d5075fe5dbb0ce724f93bcee533645472a5
Signed-off-by: harshj <quic_harshj@quicinc.com>
 2021-12-20 18:48:41 +05:30
qctecmdr
82627160c1 Merge "Sepolicy: add sepolicy for snapcam jni so" 2021-12-19 17:49:18 -08:00
qctecmdr
ee6c82d0f0 Merge "fillmore: Add sepolicy rule to access the qfprom node" 2021-12-19 07:48:55 -08:00
qctecmdr
3b4e7e5fb4 Merge "sepolicy_vndr: add policies for Spearhead and DLSC" 2021-12-19 03:24:04 -08:00
Rajat Asthana
6a06b6c4ae fillmore: Add sepolicy rule to access the qfprom node 
Change-Id: I4a53ac95f17c2a3956d75b7ddbcbd7c971d62d32
 2021-12-16 21:26:21 -08:00
Conner Huff
bf39416682 sepolicy_vndr: add policies for Spearhead and DLSC 
Spearhead framework is used for collecting data path stats
for debugging. DLSC is the agent that will collect stats
related to the network stack. For this framework to function
we need to define new SELinux policies to provide the
required access privileges.

Since Spearhead will only be enabled on userdebug
builds, move the Spearhead framework policy to
the test folder.

Change-Id: Icb29b7ffd73c255933d05fe7e5de31aa724e2b73
 2021-12-16 21:29:31 -07:00
jiaoyuan
40ed4f8e49 Sepolicy: add sepolicy for snapcam jni so 
change snapcam app from priv-app domain to own domain
add sepolicy for vendor_snapcam_app domain

Change-Id: I16eda6b773e2f1825f2e4af131e3980e51fa5354
 2021-12-16 15:00:56 +08:00
Chinmay Patil
cc82340f1f sepolicy_vndr: Add libsoc helper for camera 
-SCVE needs to read soc_id from runtime property to differentiate
 between targets having same lunch option
-Added libsoc helper for hal_camera

Change-Id: If5cef7f1c5cb89ee0bf4d0da83629a60c7d9d056
 2021-12-15 03:59:54 -08:00
Thirupathi Reddy R
bd963ead0d Updating file_contexts to be in sync with mainline 
Signed-off-by: Thirupathi Reddy R <quic_treddyr@quicinc.com>

Change-Id: I06542bcbf4084dfc98fd8adbf28972c19073197d
 2021-12-15 10:11:40 +05:30
Pavan Kumar M
5232727b14 Add vendor.qti.gnss.ILocAidlGnss 
- With recent dataconnection aidl changes,
  vendor.qti.gnss.ILocAidlGnss got removed.
  This change adds the declaration of
  ILOCAidlGnss.

Change-Id: I6be28868e8a53583b6d39e8e1b6c0c609b9a4f84
 2021-12-14 09:38:47 +05:30
Suresh Koleti
b5d49d1510 Add IQtiRadio and IImsRadio in vendor 
- Add IQtiRadio and IImsRadio in
  vendor_hal_telephony_service domain in vendor
  partition which is needed when GSI build is loaded.

Change-Id: I3a6d8a1486558db1622c2c447256024eed8773ae
CRs-Fixed: 3073450
 2021-12-14 09:38:10 +05:30
Zube Molokwu
01cc305a7f sepolicy: Add sepolicy for IDisplayConfig AIDL 
Adds sepolicy rule for IDisplayConfig AIDL in the case of GSI

Change-Id: I232839e30fc10f5dcc7195e1fbd59875e7947f25
 2021-12-14 09:37:55 +05:30
Pavan Kumar M
8f8a4d3ab1 sepolicy : Add sysfs_net related path entries 
Update the secontexts for sysfs_net for filmore target

Change-Id: I8a8394b175811d701061ecb98bd84c65795d3a47
CRs-Fixed: 3092463
 2021-12-13 13:11:26 +05:30
qctecmdr
798dd368b6 Merge "sepolicy: add selinux label for vibrator device" 2021-12-12 17:57:01 -08:00
Piyush Pradeep Jain
0eabdacb38 sepolicy_vndr: hal_trustedui: Add sepolicy rules to access touch nodes 
Add sepolicy rules to access new trusted_touch_enable,
trusted_touch_type and trusted_touch_event nodes in TUI HAL

Change-Id: Id4c06bf7bc6cae867aeb999d25791093ef8ad8d3
 2021-12-08 23:53:23 -08:00
Vishvanath Singh
0299dbce36 Merge commit '54e65312d9b41235a4c618267061d5efbef853c4' into sepolicy.vndr.lnx.12.0.r2-rel 
Change-Id: I521665796095bc0574090125040f3e8699e05c65
 2021-12-09 09:47:54 +05:30
qctecmdr
13c213a4fe Merge "Add vendor.qti.gnss.ILocAidlGnss" 2021-12-08 17:39:04 -08:00
Fenglin Wu
a39fd10855 sepolicy: add selinux label for vibrator device 
Add vibrator device path in genfs_contexts for it to get correct selinux
label.

Change-Id: Icfe257fa039e3293e6c1abd231f12ae716f3a476
 2021-12-08 14:47:32 +08:00
Malathi Gottam
85454ae238 sepolicy_vndr: allow mediacodec to access dma buf heaps 
Allow mediacodec to access vendor DMA-BUF heaps.

Change-Id: I13233cecacf19f0c88143f8c8c715c78726da844
 2021-12-07 21:48:03 -08:00
Pavan Kumar M
11e936be11 Add vendor.qti.gnss.ILocAidlGnss 
- With recent dataconnection aidl changes,
  vendor.qti.gnss.ILocAidlGnss got removed.
  This change adds the declaration of
  ILOCAidlGnss.

Change-Id: I6be28868e8a53583b6d39e8e1b6c0c609b9a4f84
 2021-12-07 10:21:30 +05:30
David Arellanes
1811b98f1b selinux attribute mlstrustedsubject added to qvrd_vndr 
Change-Id: I0f93db13f2b2bff64cd54b324bce5d320b2430b9
 2021-12-03 07:11:03 -08:00
Suresh Koleti
3c8cf06dc8 Add IQtiRadio and IImsRadio in vendor 
- Add IQtiRadio and IImsRadio in
  vendor_hal_telephony_service domain in vendor
  partition which is needed when GSI build is loaded.

Change-Id: I3a6d8a1486558db1622c2c447256024eed8773ae
CRs-Fixed: 3073450
 2021-12-01 21:11:26 -08:00
Zube Molokwu
0be22d60ab sepolicy: Add sepolicy for IDisplayConfig AIDL 
Adds sepolicy rule for IDisplayConfig AIDL in the case of GSI

Change-Id: I232839e30fc10f5dcc7195e1fbd59875e7947f25
 2021-12-01 18:59:00 -08:00
qctecmdr
a064269dc1 Merge "sepolicy: agmsvc: allow access to adsp loader sysfs node" 2021-12-01 09:57:14 -08:00
qctecmdr
305c12bb23 Merge "qtidataservices_app : add getopt for udp socket" 2021-11-30 20:04:48 -08:00
Ramkumar Radhakrishnan
f8b50befef sepolicy: Add permission to access panel boot param node 
Change-Id: Iad206bf924278d65cea4b35b107576e2442fae2a
 2021-11-30 15:15:01 -08:00
qctecmdr
459de7a1b6 Merge "sepolicy: Fix avc denials for wakeup nodes" 2021-11-30 09:32:09 -08:00
qctecmdr
54e65312d9 Merge "add dataconnection aidl service permissions." 2021-11-29 10:09:22 -08:00
dexili
cfdd9e490e sepolicy: Remove systemhelper_app binder calls for trusteduilistener. 
The systemhelper_app binder client/server calls permission has been requested on the QSSI.

Change-Id: I67bb0cd5a5b3724ecabaa090ce39f1162be1baec
 2021-11-28 15:33:22 +08:00
Manoj Basapathi
5b266a2261 qtidataservices_app : add getopt for udp socket 
Change-Id: I7be93bcfadbb35b0a5301d99218e1554fe03bb82
CRs-Fixed: 3082810
 2021-11-26 09:02:00 -08:00
qctecmdr
f9a31d124f Merge "sepolicy_vndr: add sepolicies for trusteduilistener" 2021-11-26 03:07:45 -08:00
Pavan Kumar M
af50a8ef7e add dataconnection aidl service permissions. 
Change-Id: I71a0304d569605faed6ab8d76e8dbbec252bf57f
 2021-11-25 23:14:57 -08:00
PavanKumar S.R
2d0e2f3281 sepolicy: Fix avc denials for wakeup nodes 
Label wakeup sysfs nodes listed by SuspendSepolicyTests.sh

Change-Id: Icca51aa06d6c66cc9be1ff98ee53730edcb9cbbf
 2021-11-25 14:36:36 +05:30
Baowei Liu
e120280da5 sepolicy: Add create socket file permission for vendor_wcnss_service 
cnss_cli use unix socket to communicate with cnss-daemon.
cnss-daemon need create unix socket server file when init.

Change-Id: Ibbe1eb1f418da17c0155a0663f6a94d8777ef80f
 2021-11-23 22:44:38 -08:00
qctecmdr
4f4d0cc142 Merge "NeuralNetworks-Waipio: Modify nnhal access rules to cdsp" 2021-11-23 01:11:07 -08:00
dexili
ebc2c22480 sepolicy_vndr: add sepolicies for trusteduilistener 
Change-Id: Ifc0626bc9f264514cda2ffb40badf1a6bddc025c
 2021-11-22 19:57:02 +08:00
qctecmdr
42b53c682f Merge "selinux attribute mlstrustedsubject added to qvrd_vndr" 2021-11-19 14:49:28 -08:00
qctecmdr
504029a8fb Merge "Update CNE sepolicy rules related to supplicant/hostapd" 2021-11-19 04:42:35 -08:00