GitHub/LineageOS/android_device_samsung_slsi_sepolicy.git
7 months agocommon: add sepolicy for rebalance_interrupts daemon
Francescodario Cuzzocrea [Tue, 19 Mar 2024 21:38:58 +0000 (22:38 +0100)]
common: add sepolicy for rebalance_interrupts daemon

Change-Id: Ie1b5b21b77cbcdebc3160aa371daf1c5b9bb2785
Signed-off-by: Francescodario Cuzzocrea <bosconovic@gmail.com>
7 months agocommon: Label HIDL RIL interfaces
Tim Zimmermann [Sat, 13 Apr 2024 04:43:15 +0000 (06:43 +0200)]
common: Label HIDL RIL interfaces

Change-Id: I82c7bd086edfd899ae84843774e93bbfe8d949c1

7 months agocommon: Allow sehradiomanager to find AIDL ISehRadioNetwork
Tim Zimmermann [Sat, 16 Mar 2024 11:24:30 +0000 (12:24 +0100)]
common: Allow sehradiomanager to find AIDL ISehRadioNetwork

Change-Id: Ibdd7fb16ab4050dc171a7faf37b6a60eaf36fd8d

7 months agocommon: Label AIDL RIL interfaces
Tim Zimmermann [Sat, 16 Mar 2024 05:04:35 +0000 (06:04 +0100)]
common: Label AIDL RIL interfaces

Change-Id: I296aa417176e533273ba7f6752ddffc449122cbd

7 months agocommon: Add policy for sehradiomanager
Tim Zimmermann [Thu, 14 Mar 2024 05:45:29 +0000 (06:45 +0100)]
common: Add policy for sehradiomanager

Change-Id: Iee652c13477e4ee0f6347bc473f82ed43de393b2

7 months agosepolicy: Add policy for cass and vaultkeeperd
Tim Zimmermann [Thu, 14 Mar 2024 04:51:46 +0000 (05:51 +0100)]
sepolicy: Add policy for cass and vaultkeeperd

* This is required for new RIL stacks from T and up

Change-Id: I4628a43865728d0ef01e1099a9b3f2a87ec6cca5

7 months agocommon: Label usb gadget HAL
Tim Zimmermann [Thu, 22 Feb 2024 05:14:31 +0000 (06:14 +0100)]
common: Label usb gadget HAL

Change-Id: If035e5e0753c51be5df46f15f60b03900abf85e3

7 months agocommon: Allow apps to read cpu temperature
Tim Zimmermann [Thu, 8 Feb 2024 04:57:49 +0000 (05:57 +0100)]
common: Allow apps to read cpu temperature

* qcom sepolicy allows this too

Change-Id: I747e9189f1312a8bb5729381d9be3cdce6144513

8 months agosepolicy: Remove duplicate declaration of dtbo_block_device
David Marble [Thu, 21 Mar 2024 19:26:09 +0000 (14:26 -0500)]
sepolicy: Remove duplicate declaration of dtbo_block_device

Change-Id: Id8e3961e4e235b39343853fa284e85ffefae817a

10 months agocommon: Label AIDL fingerprint HAL
Tim Zimmermann [Sat, 20 Jan 2024 05:12:08 +0000 (06:12 +0100)]
common: Label AIDL fingerprint HAL

Change-Id: I2f2ce773e5d1b11c26d4022e08113ade48761bac

10 months agocommon: Add policy for thermal_symlinks
Tim Zimmermann [Sun, 12 Nov 2023 06:12:59 +0000 (07:12 +0100)]
common: Add policy for thermal_symlinks

Change-Id: I3f684ad2450884d1241dc3f29e3d0977ff169809

10 months agocommon: Add policy for AIDL thermal HAL
Tim Zimmermann [Sun, 12 Nov 2023 05:47:00 +0000 (06:47 +0100)]
common: Add policy for AIDL thermal HAL

Change-Id: I7e6a6b51700b09a474616b32731b2a2173f2e7af

10 months agocommon: Allow hwc to read service.bootanim.exit property
Tim Zimmermann [Sat, 4 Nov 2023 13:47:31 +0000 (14:47 +0100)]
common: Allow hwc to read service.bootanim.exit property

Change-Id: Idde6bad498aa4df2fb7f3b4b9ceed260a0610c24

10 months agocommon: Label charging_enabled node
Tim Zimmermann [Fri, 3 Nov 2023 04:41:31 +0000 (05:41 +0100)]
common: Label charging_enabled node

Change-Id: I952ba89f60a22b7b171b1931c18754f5699fbed5

10 months agocommon: Label samsung camera provider HAL
Tim Zimmermann [Sun, 29 Oct 2023 08:33:34 +0000 (09:33 +0100)]
common: Label samsung camera provider HAL

Change-Id: I6ed84e67c880ad1b614e66cd9d1fb04a45b3e768

10 months agocommon: Allow flashing vbmeta in fastbootd
Tim Zimmermann [Tue, 17 Oct 2023 04:55:37 +0000 (06:55 +0200)]
common: Allow flashing vbmeta in fastbootd

Change-Id: I4bad3d7ae9c92394736a7ff5aec94c7623c5ddf9

10 months agocommon: Label missing partitions for non-dynamic partitions devices
Tim Zimmermann [Fri, 6 Oct 2023 18:58:22 +0000 (20:58 +0200)]
common: Label missing partitions for non-dynamic partitions devices

Change-Id: I0a700c9f293f26244385113e61a24f1ccb4ad73e

12 months agocommon: Use common sepolicy for bt_device
Myles Watson [Tue, 10 Jan 2023 14:23:37 +0000 (06:23 -0800)]
common: Use common sepolicy for bt_device

Bug: 205758693
Test: build
Ignore-AOSP-First: Some devices in internal define bt_device
Change-Id: I712ef4c0096ece9ce519c2b0bce59f7ca67b67fe

17 months agocommon: Add policy for lineage health HAL lineage-20
Tim Zimmermann [Tue, 13 Jun 2023 15:52:10 +0000 (17:52 +0200)]
common: Add policy for lineage health HAL

Change-Id: I70a36a48e951bcabe7b36ee72d8481ff1ba563cf

20 months agocommon: Add policy for hwc3
Tim Zimmermann [Thu, 17 Nov 2022 19:43:52 +0000 (20:43 +0100)]
common: Add policy for hwc3

Change-Id: I181f5f86f8adc98a5b03000204e488f67b2177ab

21 months agocommon: Fix neverallows of fastcharge rules
roynatech2544 [Sat, 11 Feb 2023 07:23:56 +0000 (16:23 +0900)]
common: Fix neverallows of fastcharge rules

- hal_lineage_fastcharge itself is a typeattribute, therefore it is considered a coredomain and neverallow doesn't pass.

neverallow check failed at
out/soong/.intermediates/system/sepolicy/plat_sepolicy.cil/android_common/plat_sepolicy.cil:23504
from system/sepolicy/private/property.te:324
(neverallow base_typeattr_741 base_typeattr_742 (property_service
(set)))                                         <root>
allow at
out/soong/.intermediates/system/sepolicy/vendor_sepolicy.cil/android_common/vendor_sepolicy.cil:1828
(allow hal_lineage_fastcharge vendor_fastcharge_prop (property_service
(set)))

- Correct the usage to hal_lineage_fastcharge_default, which is a domain type and _NOT_ a coredomain, neverallow passes

Test: m bacon, build works
Change-Id: I04ae2ff0db0de2a6deae2860951d6f7b40c7ae79
Signed-off-by: roynatech2544 <whiteshell2544@naver.com>
23 months agoteegris: Label /dev/tziwshmem
Tim Zimmermann [Sun, 11 Dec 2022 13:37:49 +0000 (14:37 +0100)]
teegris: Label /dev/tziwshmem

* On newer TEE versions shmem ioctls were moved from /dev/tzdev to a separate device, /dev/tziwshmem

Change-Id: Ib5313c10e9c2170e9997eb4828a04cf476dbf695

2 years agocommon: Label AIDL memtrack HAL
Tim Zimmermann [Fri, 9 Sep 2022 13:18:22 +0000 (15:18 +0200)]
common: Label AIDL memtrack HAL

Change-Id: I12ea390e901b48ae27d93177a1892ac2b57b6c1d

2 years agocommon: Label AIDL health HAL
Tim Zimmermann [Fri, 26 Aug 2022 12:10:19 +0000 (14:10 +0200)]
common: Label AIDL health HAL

Change-Id: I563be0a511db16c61df86bd87d362ee8cb130c19

2 years agocommon: Label AIDL usb HAL
Tim Zimmermann [Thu, 25 Aug 2022 12:28:36 +0000 (14:28 +0200)]
common: Label AIDL usb HAL

Change-Id: I139b779eee711506fae53a50069b6c43ee1ebbb6

2 years agocommon: Label AIDL sensors multihal
Tim Zimmermann [Thu, 25 Aug 2022 05:38:43 +0000 (07:38 +0200)]
common: Label AIDL sensors multihal

Change-Id: Ifac25d48f6d3c7e62258aff25225241aa00609ee

2 years agofixup! common: label widevine/clearkey DRM hals
Tim Zimmermann [Sun, 10 Apr 2022 05:06:46 +0000 (07:06 +0200)]
fixup! common: label widevine/clearkey DRM hals

Change-Id: If2482b90610727755825b5ba1939cae6a04d355e

2 years agocommon: Label /data/vendor/display
Tim Zimmermann [Sun, 10 Apr 2022 05:03:55 +0000 (07:03 +0200)]
common: Label /data/vendor/display

* This is used in device/lineage/sepolicy/exynos

Change-Id: I32b8f066943ecc0c103e647ae5241367245745ad

2 years agocommon: label NFC HAL
Josip Kelecic [Sat, 19 Feb 2022 16:30:23 +0000 (17:30 +0100)]
common: label NFC HAL

Change-Id: I5fbd4cf3d36d1c646d46d8744a26c3c7a4947691

2 years agocommon: label graphics files
Josip Kelecic [Wed, 9 Feb 2022 20:59:27 +0000 (21:59 +0100)]
common: label graphics files

Change-Id: I06cae3a514048be9caacc82ea9424b6ae643b942

2 years agocommon: label keymaster HAL
Josip Kelecic [Wed, 9 Feb 2022 18:28:18 +0000 (19:28 +0100)]
common: label keymaster HAL

Change-Id: Id3d80fad58c5950b2cc52ca9207a008e9215317e

2 years agocommon: label widevine/clearkey DRM hals
Josip Kelecic [Wed, 9 Feb 2022 18:26:03 +0000 (19:26 +0100)]
common: label widevine/clearkey DRM hals

Change-Id: I1731e5b20819604b25709b2c8805f98da901c4c1

2 years agocommon: label gpsd
Tim Zimmermann [Mon, 15 Feb 2021 16:55:27 +0000 (17:55 +0100)]
common: label gpsd

Change-Id: I520a10b581b0f140e4c0d46d02d9a9327b51ea6e

2 years agocommon: label macloader
Tim Zimmermann [Mon, 15 Feb 2021 09:33:55 +0000 (10:33 +0100)]
common: label macloader

Change-Id: I19d83dafa69c3e491e8695611f6ed24bbade3943

2 years agocommon: label samsung GNSS HAL
Tim Zimmermann [Mon, 15 Feb 2021 09:33:13 +0000 (10:33 +0100)]
common: label samsung GNSS HAL

Change-Id: Ia04c12f350ce53893aa6b706380b0b2078f57182

2 years agocommon: label partitions for older models
Tim Zimmermann [Mon, 15 Feb 2021 07:58:04 +0000 (08:58 +0100)]
common: label partitions for older models

* On devices launched with Oreo and older
  these partitions have uppercase names

Change-Id: Ife35b17c32201f85a840e95491941e78427c813b

2 years agocommon: label lhd
Tim Zimmermann [Mon, 15 Feb 2021 07:39:22 +0000 (08:39 +0100)]
common: label lhd

Change-Id: I45b54467d12e5aadef13a0e4cebf3c7f43f711fa

2 years agomobicore: label mcDriverDaemon
Tim Zimmermann [Mon, 15 Feb 2021 07:27:50 +0000 (08:27 +0100)]
mobicore: label mcDriverDaemon

Change-Id: Ifaa81ba7ad1ef64b0cc7356390d362280ebde0cd

2 years agocommon: Label USB HAL
Tim Zimmermann [Tue, 22 Feb 2022 10:03:20 +0000 (11:03 +0100)]
common: Label USB HAL

Change-Id: I188ec2f714e3abf1df637b11e05618347e8cf1cf

2 years agocommon: Allow secril_config_svc to set radio_prop
Michael Benedict [Sun, 6 Mar 2022 16:20:21 +0000 (23:20 +0700)]
common: Allow secril_config_svc to set radio_prop

* setting props such as dsds

Change-Id: I19e698ffe68805e88d234343b717a230fdbad967

2 years agocommon: remove FOD sepolicy lineage-19.0
Tim Zimmermann [Thu, 20 Jan 2022 20:35:32 +0000 (21:35 +0100)]
common: remove FOD sepolicy

* Dropped in: https://review.lineageos.org/c/LineageOS/android_device_lineage_sepolicy/+/321883

Change-Id: I0dfa2c6ed1f26aaf5a90896694d767fe48ae3df2

2 years agocommon: label new AIDL vibrator HAL
Tim Zimmermann [Wed, 24 Nov 2021 16:10:34 +0000 (17:10 +0100)]
common: label new AIDL vibrator HAL

Change-Id: I568560a7f3ae929cdc60aa4c3e81f89b4a4d7ddd

2 years agocommon: label new AIDL light HAL
Tim Zimmermann [Sun, 21 Nov 2021 07:55:55 +0000 (08:55 +0100)]
common: label new AIDL light HAL

Change-Id: I294000541f4d5738abbb5d025ddc0c0035d358e0

2 years agocommon: drop properties with invalid vendor namespace
programminghoch10 [Thu, 14 Oct 2021 19:12:59 +0000 (21:12 +0200)]
common: drop properties with invalid vendor namespace

* Fixes:
  1 violations found:
  ro.multisim.                   u:object_r:vendor_radio_prop:s0
* These props aren't used anyways

Change-Id: I6663206530547cda3499584f71135e0b2f3c1236

2 years agocommon: remove ro.build.PDA prop
Tim Zimmermann [Wed, 6 Oct 2021 16:16:14 +0000 (18:16 +0200)]
common: remove ro.build.PDA prop

* Not needed on lineage

Change-Id: Iad33533d08260701b00176c524d91ee3679a1359

2 years agomobicore: legacy: do now allow tee to set system_prop
Francescodario Cuzzocrea [Fri, 7 Jan 2022 14:20:19 +0000 (15:20 +0100)]
mobicore: legacy: do now allow tee to set system_prop

 * it is a never allow, and removing it nothing pops up

Signed-off-by: Francescodario Cuzzocrea <bosconovic@gmail.com>
Change-Id: Ibb9d2ff42867bffa97d254dd03d7360bcc92dfdb

2 years agoAttach vendor_property_type to properties
Inseob Kim [Tue, 18 Aug 2020 14:29:12 +0000 (23:29 +0900)]
Attach vendor_property_type to properties

We are going to enforce that each property has an explicit owner, such
as system, vendor, or product. This attaches vendor_property_type to
properties defined under vendor sepolicy directories.

Bug: 159097992
Test: m selinux_policy && boot device
Change-Id: I33c40ca345365d8f01f43d3ce7f1f3434b1edfd5
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
2 years agoRevert "common: Label ro.gfx.driver.1 propertiy"
SamarV-121 [Thu, 26 Aug 2021 12:30:17 +0000 (18:00 +0530)]
Revert "common: Label ro.gfx.driver.1 propertiy"

* https://android-review.googlesource.com/c/platform/system/sepolicy/+/1344643

This reverts commit 9b85ce45df67ef85caf7d91775daaddc8c7357e2.

Change-Id: I8cf513c21b91260ef914ea1621a7363c133d37d3
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
2 years agocommon: Update radio prop context
SamarV-121 [Thu, 26 Aug 2021 06:55:15 +0000 (12:25 +0530)]
common: Update radio prop context

* https://android-review.googlesource.com/c/platform/system/sepolicy/+/1311638

Change-Id: I1829ca439e7bc9db924b28a7d87c4ee358be3ff1
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
2 years agosepolicy: Switch to SYSTEM_EXT_{PUBLIC,PRIVATE}_SEPOLICY_DIRS
Michael Bestas [Thu, 7 Oct 2021 19:04:41 +0000 (22:04 +0300)]
sepolicy: Switch to SYSTEM_EXT_{PUBLIC,PRIVATE}_SEPOLICY_DIRS

Fixes:
warning: BOARD_PLAT_PRIVATE_SEPOLICY_DIR has been deprecated.
    Use SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS instead.
warning: BOARD_PLAT_PUBLIC_SEPOLICY_DIR has been deprecated.
    Use SYSTEM_EXT_PUBLIC_SEPOLICY_DIRS instead.
Change-Id: I752602079de8ff4c5370fe3ec861b8746838d878
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
3 years agocommon: Allow wifi HAL to read SAP interface prop for hotspot lineage-18.1
Andreas Schneider [Mon, 23 Aug 2021 06:32:28 +0000 (08:32 +0200)]
common: Allow wifi HAL to read SAP interface prop for hotspot

Change-Id: Ifc95484f1cabadab4f84feff4432e31bb4c8f692

3 years agoteegris: Allow tzdaemon to write to /mnt/vendor/efs/tee
Andreas Schneider [Mon, 16 Mar 2020 08:12:54 +0000 (09:12 +0100)]
teegris: Allow tzdaemon to write to /mnt/vendor/efs/tee

Change-Id: Ie8b156bbf0d5b7efc8322e975ea0e22acc4a3a14
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
3 years agomobicore: Add missing vendor_file_type attribute to mobicore_vendor_file
SamarV-121 [Sun, 18 Jul 2021 11:37:57 +0000 (17:07 +0530)]
mobicore: Add missing vendor_file_type attribute to mobicore_vendor_file

 * also take away the write access from these HALs
   which are causing neverallows
 * Thanks fcuzzocrea for notifying

Change-Id: Id647d208bd9c44189935d5467ec99edb81a57e64
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
3 years agoteegris: Allow gatekeeper and keymaster HAL to use teegris
Andreas Schneider [Sun, 15 Mar 2020 18:17:47 +0000 (19:17 +0100)]
teegris: Allow gatekeeper and keymaster HAL to use teegris

Change-Id: I621c0c63c70bcad762afc984cd755ede1fcfdb67
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
3 years agosepolicy: Use BOARD_VENDOR_SEPOLICY_DIRS
Felix [Tue, 28 May 2019 12:05:51 +0000 (14:05 +0200)]
sepolicy: Use BOARD_VENDOR_SEPOLICY_DIRS

BOARD_SEPOLICY_DIRS is deprecated.

Change-Id: I046282b2a2e8c541726fb29cb0044503322d4be9
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
3 years agomobicore: Add sepolicy for trustonic HALs
SamarV-121 [Thu, 15 Jul 2021 17:13:40 +0000 (22:43 +0530)]
mobicore: Add sepolicy for trustonic HALs

Change-Id: I061a91244c8ce5e9fb3528e1a188187a551a786a
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
3 years agomobicore: Lable /data/vendor/mcRegistry
SamarV-121 [Thu, 15 Jul 2021 17:05:34 +0000 (22:35 +0530)]
mobicore: Lable /data/vendor/mcRegistry

 * and allow tee to create dirs/files in it

Change-Id: Ic098cb1600a5291b5b99cd9df15da6e7a7582684
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
3 years agomobicore: Add sepolicy for /vendor/app/mcRegistry
SamarV-121 [Thu, 15 Jul 2021 16:58:52 +0000 (22:28 +0530)]
mobicore: Add sepolicy for /vendor/app/mcRegistry

Change-Id: I522f2eee70c1166b66565e17a2c4760844541bb3
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
3 years agocommon: Label the touchscreen input enable node
Andreas Schneider [Thu, 21 Jan 2021 16:26:27 +0000 (17:26 +0100)]
common: Label the touchscreen input enable node

This allows the power HAL to write to it.

Change-Id: I665db293ebafe92f3b57b5e35a54c0501214ef18

3 years agocommon: Resolve last_kmsg denials
Arne Coucheron [Mon, 14 Dec 2020 23:53:55 +0000 (00:53 +0100)]
common: Resolve last_kmsg denials

Change-Id: Ib6a00d0c14eb03f1e16b24471736a0b84371152c

3 years agocommon: Allow macloader to set wifi props
Andreas Schneider [Tue, 1 Jun 2021 06:37:59 +0000 (08:37 +0200)]
common: Allow macloader to set wifi props

Change-Id: I88a98165e136f737448273f46ccc5d6a29d7736b

3 years agocommon: label new AIDL power HAL
Tim Zimmermann [Tue, 16 Feb 2021 15:10:38 +0000 (16:10 +0100)]
common: label new AIDL power HAL

Change-Id: I3d758f12dc2fd82f04b465ec4fe8097a34230592

3 years agocommon: label samsung sensors multihal
josip-k [Mon, 18 Jan 2021 18:23:04 +0000 (19:23 +0100)]
common: label samsung sensors multihal

Signed-off-by: josip-k <d3hum4niz3d@gmail.com>
Change-Id: I80ad99ffa337fa37cd56bdf3beac5d6e6f11f8aa

3 years agocommon: add policy for fastbootd
Tim Zimmermann [Mon, 18 Jan 2021 10:47:53 +0000 (11:47 +0100)]
common: add policy for fastbootd

Change-Id: I7dc4b026befb31fe6325ab704fa2fedf3c8cc56e

3 years agovendor: Allow lineage fastcharge HAL to set prop and trigger the switch
Andreas Schneider [Thu, 21 Jan 2021 08:00:25 +0000 (09:00 +0100)]
vendor: Allow lineage fastcharge HAL to set prop and trigger the switch

Change-Id: Iee6cf079da97878d66752961cad6a4e44e0c862f

3 years agocommon: Label fastcharge property
Andreas Schneider [Thu, 21 Jan 2021 07:59:35 +0000 (08:59 +0100)]
common: Label fastcharge property

Change-Id: I95e54fee9bdfe379d7b84e0a7640454f13a691b6

3 years agocommon: Label /sys/devices/virtual/sec/switch/afc_disable
Andreas Schneider [Thu, 21 Jan 2021 07:58:46 +0000 (08:58 +0100)]
common: Label /sys/devices/virtual/sec/switch/afc_disable

This is the fastcharge switch.

Change-Id: Icc8a9c1ce0154f316e35e20a18be6c5a468d942e

3 years agocommon: Label lineage fastcharge HAL
Andreas Schneider [Thu, 21 Jan 2021 07:55:39 +0000 (08:55 +0100)]
common: Label lineage fastcharge HAL

Change-Id: I428e54273156cff2d25897f62ecff2ba4dc53629

3 years agomobicore: define type gatekeeper_efs_file
Jan Altensen [Sun, 18 Oct 2020 12:53:21 +0000 (14:53 +0200)]
mobicore: define type gatekeeper_efs_file

Change-Id: I3aa333f0bc03ac5fc1d2cf309c1a23bbd338d917
(cherry picked from commit a7b5eb66618991c94fc76999844883ec13cbe339)

3 years agomobicore: split into legacy and treble folders
Jan Altensen [Sun, 18 Oct 2020 11:38:56 +0000 (13:38 +0200)]
mobicore: split into legacy and treble folders

Change-Id: I44bdbc49944be89314f1f96d8a2c1c9fb58e1352
(cherry picked from commit 15a5fc063c5f37847cdc6e631e0deaeba28efbd7)

3 years agocommon: drop duplicate declaration of exported_camera_prop
Tim Zimmermann [Mon, 12 Oct 2020 16:13:54 +0000 (18:13 +0200)]
common: drop duplicate declaration of exported_camera_prop

this is now defined in system/sepolicy

Change-Id: I0a040b86a926b3ee2d6940093c81850156978956

3 years agocommon: add policy for touch HAL
Tim Zimmermann [Thu, 10 Dec 2020 16:35:27 +0000 (17:35 +0100)]
common: add policy for touch HAL

Change-Id: I0bca76e4b614d4f927b40f9a5fe52f24d0cfc6f5

4 years agotee: add mobicore sepolicy for exynos8895
Henrik Grimler [Sat, 5 Sep 2020 18:23:59 +0000 (20:23 +0200)]
tee: add mobicore sepolicy for exynos8895

Tested on dream2lte.

Change-Id: I6a9c001f22728eb68743e0833e97e6b4d09bf0d9

4 years agocommon: add definition of sysfs_bt_writable
Henrik Grimler [Wed, 26 Aug 2020 08:53:59 +0000 (10:53 +0200)]
common: add definition of sysfs_bt_writable

Used in hal_bluetooth_default.te so makes sense to define it here.

Change-Id: Icae5641509f7d73d97992d218f93b13a71d44b89

4 years agocommon: Allow rild to read vendor_radio_pro
Andreas Schneider [Mon, 7 Sep 2020 15:25:32 +0000 (17:25 +0200)]
common: Allow rild to read vendor_radio_pro

Change-Id: Idc020da27f132ea3db5d2c48ffed9c360af60697

4 years agocommon: Allow wifi hal to read log dir
Andreas Schneider [Mon, 17 Aug 2020 05:44:21 +0000 (07:44 +0200)]
common: Allow wifi hal to read log dir

Change-Id: I2525d499805e6806ae5b0e99ad761a9a80e699eb

4 years agocommon: Label thermal nodes and give thermal HAL access
Andreas Schneider [Tue, 21 Jul 2020 14:34:57 +0000 (16:34 +0200)]
common: Label thermal nodes and give thermal HAL access

Change-Id: I0d27ccbe8cef4247e4655abbbb482ed3cb8a3182

4 years agocommon: Label android.hardware.thermal@2.0-service.samsung
Andreas Schneider [Tue, 21 Jul 2020 14:31:04 +0000 (16:31 +0200)]
common: Label android.hardware.thermal@2.0-service.samsung

Change-Id: I373e317d73b607e9efeaa424670c6f57bb67bcfd

4 years agocommon: Label touchscreen power off node
Andreas Schneider [Mon, 13 Jul 2020 07:35:10 +0000 (09:35 +0200)]
common: Label touchscreen power off node

Change-Id: Ifacc78496c6418db5eb3f3b7ba7304cc6b147906

4 years agocommon: Fix power hal access to cpu_dma_device
Andreas Schneider [Tue, 7 Jul 2020 05:37:25 +0000 (07:37 +0200)]
common: Fix power hal access to cpu_dma_device

Change-Id: I7ff8b556b52ecc1a9670475bfac44ca795932b88

4 years agocommon: Allow power HAL to change configs
Andreas Schneider [Wed, 1 Jul 2020 07:36:56 +0000 (09:36 +0200)]
common: Allow power HAL to change configs

Change-Id: I5b9707481fe77ba5fe7f93a037cfdde5335771f0

4 years agocommon: Label android.hardware.power@1.3-service.samsung-libperfmgr
Andreas Schneider [Tue, 30 Jun 2020 16:39:38 +0000 (18:39 +0200)]
common: Label android.hardware.power@1.3-service.samsung-libperfmgr

Change-Id: Iccb7757ac66fb3a5a9f9ab70b76f6437e4008ae4

4 years agocommon: Allow secril_config_svc to search /mnt/vendor
Andreas Schneider [Mon, 25 May 2020 18:00:12 +0000 (20:00 +0200)]
common: Allow secril_config_svc to search /mnt/vendor

Change-Id: I7ffdf6886844d9820faa3454cc070e45259f04d6

4 years agocommon: Allow lhd to access bbd sysfs
Andreas Schneider [Mon, 25 May 2020 17:59:09 +0000 (19:59 +0200)]
common: Allow lhd to access bbd sysfs

Change-Id: Ib3bdd52dd8718ae06f71f83c7e86d402a5ea7851

4 years agocommon: Allow keymaster HAL to search /mnt/vendor/efs
Andreas Schneider [Sun, 12 Apr 2020 14:24:03 +0000 (16:24 +0200)]
common: Allow keymaster HAL to search /mnt/vendor/efs

Change-Id: I041f32bfc49c42fbda12e81530121eed08f2293d

4 years agocommon: Allow hostapd to read its config
derfelot [Sat, 25 Apr 2020 02:54:01 +0000 (04:54 +0200)]
common: Allow hostapd to read its config

Change-Id: Ifc674134b3e774b5f7f5a31ba13a106ccb4af3f6

4 years agocommon: add policy for powershare HAL
Linux4 [Mon, 20 Apr 2020 16:02:08 +0000 (18:02 +0200)]
common: add policy for powershare HAL

Change-Id: I2e17e677613b4563215db1f40645eb7d84ce98dc

4 years agocommon: Add policy for inscreen fp HAL
Andreas Schneider [Tue, 14 Apr 2020 08:21:06 +0000 (10:21 +0200)]
common: Add policy for inscreen fp HAL

Change-Id: Id846e19e2a27ab8b723a1f704dab195409f21d79

4 years agocommon: Label rtc_status sysfs node
derfelot [Mon, 13 Apr 2020 20:31:53 +0000 (22:31 +0200)]
common: Label rtc_status sysfs node

Change-Id: I7961b8806bcd36f33a9acac60cfaabc58f39fc48

4 years agocommon: Label efs battery files
derfelot [Mon, 13 Apr 2020 20:31:29 +0000 (22:31 +0200)]
common: Label efs battery files

Change-Id: I76e5f299e122a2933a4fc451c06930ad6f2c5255

4 years agocommon: Label efs cpk files
Andreas Schneider [Sat, 11 Apr 2020 13:54:48 +0000 (15:54 +0200)]
common: Label efs cpk files

Change-Id: I8c4d416d761758077f13a84bdb1dbfea4092eac0

4 years agocommon: Add policy for gnss HAL
Andreas Schneider [Sat, 11 Apr 2020 13:17:23 +0000 (15:17 +0200)]
common: Add policy for gnss HAL

Change-Id: I5c3390f5ef0a63b92fecdf50d6661b33f5dcc051

4 years agocommon: Add policy for bluetooth HAL
Andreas Schneider [Sat, 11 Apr 2020 13:16:04 +0000 (15:16 +0200)]
common: Add policy for bluetooth HAL

Change-Id: Ic2ca2097e9b71d1513f4d508b432e74b0b07a45f

4 years agocommon: Label /data/zram
Andreas Schneider [Sat, 11 Apr 2020 13:09:24 +0000 (15:09 +0200)]
common: Label /data/zram

Change-Id: Ic7e11f9034fde679a593ab4a97a56ce6ee851e48

4 years agocommon: Label rtc sysfs nodes
Andreas Schneider [Sat, 11 Apr 2020 13:08:02 +0000 (15:08 +0200)]
common: Label rtc sysfs nodes

Change-Id: Ib3e5e0c1cec6af0dffaa17ed329ce8bab3022ef2

4 years agocommon: Add hw context for new fingerprint HIDL
Andreas Schneider [Mon, 6 Apr 2020 05:31:27 +0000 (07:31 +0200)]
common: Add hw context for new fingerprint HIDL

Change-Id: I623eeffc756beeb8bea68b4ed9828c7001de8c88

4 years agocommon: Label ro.gfx.driver.1 propertiy
Andreas Schneider [Wed, 8 Apr 2020 17:17:52 +0000 (19:17 +0200)]
common: Label ro.gfx.driver.1 propertiy

Change-Id: Ida7a26e70f3e8aebe78a4a51f315f6883c0abaec

4 years agocommon: Add epicd
Andreas Schneider [Wed, 8 Apr 2020 17:14:33 +0000 (19:14 +0200)]
common: Add epicd

Change-Id: I44a9fd6f0b58235daed02f69607dae09c13b610b

4 years agocommon: Add argosd
Andreas Schneider [Wed, 8 Apr 2020 17:10:44 +0000 (19:10 +0200)]
common: Add argosd

Change-Id: Ie4d2e98d6ef26e276091d05f9c67cab2d2a7be93

4 years agocommon: Add lhd
Andreas Schneider [Wed, 8 Apr 2020 17:02:14 +0000 (19:02 +0200)]
common: Add lhd

Change-Id: I63728476203bbbbb11c7d3ffad8575cb700cb21e