summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
programminghoch10 [Thu, 14 Oct 2021 19:12:59 +0000 (21:12 +0200)]
common: drop properties with invalid vendor namespace
* Fixes:
1 violations found:
ro.multisim. u:object_r:vendor_radio_prop:s0
* These props aren't used anyways
Change-Id: I6663206530547cda3499584f71135e0b2f3c1236
Tim Zimmermann [Wed, 6 Oct 2021 16:16:14 +0000 (18:16 +0200)]
common: remove ro.build.PDA prop
* Not needed on lineage
Change-Id: Iad33533d08260701b00176c524d91ee3679a1359
Francescodario Cuzzocrea [Fri, 7 Jan 2022 14:20:19 +0000 (15:20 +0100)]
mobicore: legacy: do now allow tee to set system_prop
* it is a never allow, and removing it nothing pops up
Signed-off-by: Francescodario Cuzzocrea <bosconovic@gmail.com>
Change-Id: Ibb9d2ff42867bffa97d254dd03d7360bcc92dfdb
Inseob Kim [Tue, 18 Aug 2020 14:29:12 +0000 (23:29 +0900)]
Attach vendor_property_type to properties
We are going to enforce that each property has an explicit owner, such
as system, vendor, or product. This attaches vendor_property_type to
properties defined under vendor sepolicy directories.
Bug:
159097992
Test: m selinux_policy && boot device
Change-Id: I33c40ca345365d8f01f43d3ce7f1f3434b1edfd5
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
SamarV-121 [Thu, 26 Aug 2021 12:30:17 +0000 (18:00 +0530)]
Revert "common: Label ro.gfx.driver.1 propertiy"
* https://android-review.googlesource.com/c/platform/system/sepolicy/+/
1344643
This reverts commit
9b85ce45df67ef85caf7d91775daaddc8c7357e2.
Change-Id: I8cf513c21b91260ef914ea1621a7363c133d37d3
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
SamarV-121 [Thu, 26 Aug 2021 06:55:15 +0000 (12:25 +0530)]
common: Update radio prop context
* https://android-review.googlesource.com/c/platform/system/sepolicy/+/
1311638
Change-Id: I1829ca439e7bc9db924b28a7d87c4ee358be3ff1
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
Michael Bestas [Thu, 7 Oct 2021 19:04:41 +0000 (22:04 +0300)]
sepolicy: Switch to SYSTEM_EXT_{PUBLIC,PRIVATE}_SEPOLICY_DIRS
Fixes:
warning: BOARD_PLAT_PRIVATE_SEPOLICY_DIR has been deprecated.
Use SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS instead.
warning: BOARD_PLAT_PUBLIC_SEPOLICY_DIR has been deprecated.
Use SYSTEM_EXT_PUBLIC_SEPOLICY_DIRS instead.
Change-Id: I752602079de8ff4c5370fe3ec861b8746838d878
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
Andreas Schneider [Mon, 23 Aug 2021 06:32:28 +0000 (08:32 +0200)]
common: Allow wifi HAL to read SAP interface prop for hotspot
Change-Id: Ifc95484f1cabadab4f84feff4432e31bb4c8f692
Andreas Schneider [Mon, 16 Mar 2020 08:12:54 +0000 (09:12 +0100)]
teegris: Allow tzdaemon to write to /mnt/vendor/efs/tee
Change-Id: Ie8b156bbf0d5b7efc8322e975ea0e22acc4a3a14
Signed-off-by: SamarV-121 <samarvispute121@pm.me>
SamarV-121 [Sun, 18 Jul 2021 11:37:57 +0000 (17:07 +0530)]
mobicore: Add missing vendor_file_type attribute to mobicore_vendor_file
* also take away the write access from these HALs
which are causing neverallows
* Thanks fcuzzocrea for notifying
Change-Id: Id647d208bd9c44189935d5467ec99edb81a57e64
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
Andreas Schneider [Sun, 15 Mar 2020 18:17:47 +0000 (19:17 +0100)]
teegris: Allow gatekeeper and keymaster HAL to use teegris
Change-Id: I621c0c63c70bcad762afc984cd755ede1fcfdb67
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
Felix [Tue, 28 May 2019 12:05:51 +0000 (14:05 +0200)]
sepolicy: Use BOARD_VENDOR_SEPOLICY_DIRS
BOARD_SEPOLICY_DIRS is deprecated.
Change-Id: I046282b2a2e8c541726fb29cb0044503322d4be9
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
SamarV-121 [Thu, 15 Jul 2021 17:13:40 +0000 (22:43 +0530)]
mobicore: Add sepolicy for trustonic HALs
Change-Id: I061a91244c8ce5e9fb3528e1a188187a551a786a
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
SamarV-121 [Thu, 15 Jul 2021 17:05:34 +0000 (22:35 +0530)]
mobicore: Lable /data/vendor/mcRegistry
* and allow tee to create dirs/files in it
Change-Id: Ic098cb1600a5291b5b99cd9df15da6e7a7582684
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
SamarV-121 [Thu, 15 Jul 2021 16:58:52 +0000 (22:28 +0530)]
mobicore: Add sepolicy for /vendor/app/mcRegistry
Change-Id: I522f2eee70c1166b66565e17a2c4760844541bb3
Signed-off-by: SamarV-121 <samarvispute121@gmail.com>
Andreas Schneider [Thu, 21 Jan 2021 16:26:27 +0000 (17:26 +0100)]
common: Label the touchscreen input enable node
This allows the power HAL to write to it.
Change-Id: I665db293ebafe92f3b57b5e35a54c0501214ef18
Arne Coucheron [Mon, 14 Dec 2020 23:53:55 +0000 (00:53 +0100)]
common: Resolve last_kmsg denials
Change-Id: Ib6a00d0c14eb03f1e16b24471736a0b84371152c
Andreas Schneider [Tue, 1 Jun 2021 06:37:59 +0000 (08:37 +0200)]
common: Allow macloader to set wifi props
Change-Id: I88a98165e136f737448273f46ccc5d6a29d7736b
Tim Zimmermann [Tue, 16 Feb 2021 15:10:38 +0000 (16:10 +0100)]
common: label new AIDL power HAL
Change-Id: I3d758f12dc2fd82f04b465ec4fe8097a34230592
josip-k [Mon, 18 Jan 2021 18:23:04 +0000 (19:23 +0100)]
common: label samsung sensors multihal
Signed-off-by: josip-k <d3hum4niz3d@gmail.com>
Change-Id: I80ad99ffa337fa37cd56bdf3beac5d6e6f11f8aa
Tim Zimmermann [Mon, 18 Jan 2021 10:47:53 +0000 (11:47 +0100)]
common: add policy for fastbootd
Change-Id: I7dc4b026befb31fe6325ab704fa2fedf3c8cc56e
Andreas Schneider [Thu, 21 Jan 2021 08:00:25 +0000 (09:00 +0100)]
vendor: Allow lineage fastcharge HAL to set prop and trigger the switch
Change-Id: Iee6cf079da97878d66752961cad6a4e44e0c862f
Andreas Schneider [Thu, 21 Jan 2021 07:59:35 +0000 (08:59 +0100)]
common: Label fastcharge property
Change-Id: I95e54fee9bdfe379d7b84e0a7640454f13a691b6
Andreas Schneider [Thu, 21 Jan 2021 07:58:46 +0000 (08:58 +0100)]
common: Label /sys/devices/virtual/sec/switch/afc_disable
This is the fastcharge switch.
Change-Id: Icc8a9c1ce0154f316e35e20a18be6c5a468d942e
Andreas Schneider [Thu, 21 Jan 2021 07:55:39 +0000 (08:55 +0100)]
common: Label lineage fastcharge HAL
Change-Id: I428e54273156cff2d25897f62ecff2ba4dc53629
Jan Altensen [Sun, 18 Oct 2020 12:53:21 +0000 (14:53 +0200)]
mobicore: define type gatekeeper_efs_file
Change-Id: I3aa333f0bc03ac5fc1d2cf309c1a23bbd338d917
(cherry picked from commit
a7b5eb66618991c94fc76999844883ec13cbe339)
Jan Altensen [Sun, 18 Oct 2020 11:38:56 +0000 (13:38 +0200)]
mobicore: split into legacy and treble folders
Change-Id: I44bdbc49944be89314f1f96d8a2c1c9fb58e1352
(cherry picked from commit
15a5fc063c5f37847cdc6e631e0deaeba28efbd7)
Tim Zimmermann [Mon, 12 Oct 2020 16:13:54 +0000 (18:13 +0200)]
common: drop duplicate declaration of exported_camera_prop
this is now defined in system/sepolicy
Change-Id: I0a040b86a926b3ee2d6940093c81850156978956
Tim Zimmermann [Thu, 10 Dec 2020 16:35:27 +0000 (17:35 +0100)]
common: add policy for touch HAL
Change-Id: I0bca76e4b614d4f927b40f9a5fe52f24d0cfc6f5
Henrik Grimler [Sat, 5 Sep 2020 18:23:59 +0000 (20:23 +0200)]
tee: add mobicore sepolicy for exynos8895
Tested on dream2lte.
Change-Id: I6a9c001f22728eb68743e0833e97e6b4d09bf0d9
Henrik Grimler [Wed, 26 Aug 2020 08:53:59 +0000 (10:53 +0200)]
common: add definition of sysfs_bt_writable
Used in hal_bluetooth_default.te so makes sense to define it here.
Change-Id: Icae5641509f7d73d97992d218f93b13a71d44b89
Andreas Schneider [Mon, 7 Sep 2020 15:25:32 +0000 (17:25 +0200)]
common: Allow rild to read vendor_radio_pro
Change-Id: Idc020da27f132ea3db5d2c48ffed9c360af60697
Andreas Schneider [Mon, 17 Aug 2020 05:44:21 +0000 (07:44 +0200)]
common: Allow wifi hal to read log dir
Change-Id: I2525d499805e6806ae5b0e99ad761a9a80e699eb
Andreas Schneider [Tue, 21 Jul 2020 14:34:57 +0000 (16:34 +0200)]
common: Label thermal nodes and give thermal HAL access
Change-Id: I0d27ccbe8cef4247e4655abbbb482ed3cb8a3182
Andreas Schneider [Tue, 21 Jul 2020 14:31:04 +0000 (16:31 +0200)]
common: Label android.hardware.thermal@2.0-service.samsung
Change-Id: I373e317d73b607e9efeaa424670c6f57bb67bcfd
Andreas Schneider [Mon, 13 Jul 2020 07:35:10 +0000 (09:35 +0200)]
common: Label touchscreen power off node
Change-Id: Ifacc78496c6418db5eb3f3b7ba7304cc6b147906
Andreas Schneider [Tue, 7 Jul 2020 05:37:25 +0000 (07:37 +0200)]
common: Fix power hal access to cpu_dma_device
Change-Id: I7ff8b556b52ecc1a9670475bfac44ca795932b88
Andreas Schneider [Wed, 1 Jul 2020 07:36:56 +0000 (09:36 +0200)]
common: Allow power HAL to change configs
Change-Id: I5b9707481fe77ba5fe7f93a037cfdde5335771f0
Andreas Schneider [Tue, 30 Jun 2020 16:39:38 +0000 (18:39 +0200)]
common: Label android.hardware.power@1.3-service.samsung-libperfmgr
Change-Id: Iccb7757ac66fb3a5a9f9ab70b76f6437e4008ae4
Andreas Schneider [Mon, 25 May 2020 18:00:12 +0000 (20:00 +0200)]
common: Allow secril_config_svc to search /mnt/vendor
Change-Id: I7ffdf6886844d9820faa3454cc070e45259f04d6
Andreas Schneider [Mon, 25 May 2020 17:59:09 +0000 (19:59 +0200)]
common: Allow lhd to access bbd sysfs
Change-Id: Ib3bdd52dd8718ae06f71f83c7e86d402a5ea7851
Andreas Schneider [Sun, 12 Apr 2020 14:24:03 +0000 (16:24 +0200)]
common: Allow keymaster HAL to search /mnt/vendor/efs
Change-Id: I041f32bfc49c42fbda12e81530121eed08f2293d
derfelot [Sat, 25 Apr 2020 02:54:01 +0000 (04:54 +0200)]
common: Allow hostapd to read its config
Change-Id: Ifc674134b3e774b5f7f5a31ba13a106ccb4af3f6
Linux4 [Mon, 20 Apr 2020 16:02:08 +0000 (18:02 +0200)]
common: add policy for powershare HAL
Change-Id: I2e17e677613b4563215db1f40645eb7d84ce98dc
Andreas Schneider [Tue, 14 Apr 2020 08:21:06 +0000 (10:21 +0200)]
common: Add policy for inscreen fp HAL
Change-Id: Id846e19e2a27ab8b723a1f704dab195409f21d79
derfelot [Mon, 13 Apr 2020 20:31:53 +0000 (22:31 +0200)]
common: Label rtc_status sysfs node
Change-Id: I7961b8806bcd36f33a9acac60cfaabc58f39fc48
derfelot [Mon, 13 Apr 2020 20:31:29 +0000 (22:31 +0200)]
common: Label efs battery files
Change-Id: I76e5f299e122a2933a4fc451c06930ad6f2c5255
Andreas Schneider [Sat, 11 Apr 2020 13:54:48 +0000 (15:54 +0200)]
common: Label efs cpk files
Change-Id: I8c4d416d761758077f13a84bdb1dbfea4092eac0
Andreas Schneider [Sat, 11 Apr 2020 13:17:23 +0000 (15:17 +0200)]
common: Add policy for gnss HAL
Change-Id: I5c3390f5ef0a63b92fecdf50d6661b33f5dcc051
Andreas Schneider [Sat, 11 Apr 2020 13:16:04 +0000 (15:16 +0200)]
common: Add policy for bluetooth HAL
Change-Id: Ic2ca2097e9b71d1513f4d508b432e74b0b07a45f
Andreas Schneider [Sat, 11 Apr 2020 13:09:24 +0000 (15:09 +0200)]
common: Label /data/zram
Change-Id: Ic7e11f9034fde679a593ab4a97a56ce6ee851e48
Andreas Schneider [Sat, 11 Apr 2020 13:08:02 +0000 (15:08 +0200)]
common: Label rtc sysfs nodes
Change-Id: Ib3e5e0c1cec6af0dffaa17ed329ce8bab3022ef2
Andreas Schneider [Mon, 6 Apr 2020 05:31:27 +0000 (07:31 +0200)]
common: Add hw context for new fingerprint HIDL
Change-Id: I623eeffc756beeb8bea68b4ed9828c7001de8c88
Andreas Schneider [Wed, 8 Apr 2020 17:17:52 +0000 (19:17 +0200)]
common: Label ro.gfx.driver.1 propertiy
Change-Id: Ida7a26e70f3e8aebe78a4a51f315f6883c0abaec
Andreas Schneider [Wed, 8 Apr 2020 17:14:33 +0000 (19:14 +0200)]
common: Add epicd
Change-Id: I44a9fd6f0b58235daed02f69607dae09c13b610b
Andreas Schneider [Wed, 8 Apr 2020 17:10:44 +0000 (19:10 +0200)]
common: Add argosd
Change-Id: Ie4d2e98d6ef26e276091d05f9c67cab2d2a7be93
Andreas Schneider [Wed, 8 Apr 2020 17:02:14 +0000 (19:02 +0200)]
common: Add lhd
Change-Id: I63728476203bbbbb11c7d3ffad8575cb700cb21e
Andreas Schneider [Wed, 8 Apr 2020 16:55:20 +0000 (18:55 +0200)]
common: Add gpsd
Change-Id: I1f63fb510d598cacc1dd03123ef7f2bbb3c4b0c1
Andreas Schneider [Wed, 8 Apr 2020 16:49:11 +0000 (18:49 +0200)]
common: Allow wpa supplicant to access /data/vendor/wifi
Change-Id: Ibf7b6b839f357e22b68976bd5d2ddbd798fc6cfc
Andreas Schneider [Wed, 8 Apr 2020 16:47:49 +0000 (18:47 +0200)]
common: Allow macloader to access efs files
Change-Id: Ia31b51d0397a23ae203aa22ac6277cca239d1883
Andreas Schneider [Wed, 8 Apr 2020 16:45:32 +0000 (18:45 +0200)]
common: Add rild
Change-Id: I13f5bda8b3225beac12012586e1cffc4225378c4
Andreas Schneider [Wed, 8 Apr 2020 16:40:54 +0000 (18:40 +0200)]
common: Add secril_config_svc
Change-Id: I3c88da17a638a78ab58bcb33bb9b7d7e1fc7509a
Andreas Schneider [Wed, 8 Apr 2020 16:35:40 +0000 (18:35 +0200)]
common: Add cbd service
Change-Id: Ieb839870180262cc233678f91804f95ee051ddc3
Andreas Schneider [Wed, 8 Apr 2020 16:25:44 +0000 (18:25 +0200)]
common: Allow keymaster to search /mnt/vendor
Change-Id: I187a285afcf60d602dd6ff40053f44173fc334c4
Andreas Schneider [Wed, 1 Apr 2020 11:22:32 +0000 (13:22 +0200)]
common: Do not allow to write to read only fs types
Change-Id: I06378f5e137582b8a83569d65d5b1869011dd821
Andreas Schneider [Fri, 27 Mar 2020 07:36:09 +0000 (08:36 +0100)]
common: Add policy for sensors HAL
Change-Id: If41bdbfe8f52ba0e5940502d904ce982bd235a0f
Andreas Schneider [Fri, 27 Mar 2020 07:29:19 +0000 (08:29 +0100)]
common: Label block devices
Change-Id: I4d116f48da9c309ad374b711a5d4a7d7ae63acea
Andreas Schneider [Fri, 27 Mar 2020 07:25:24 +0000 (08:25 +0100)]
common: Label efs partion
Change-Id: I19e4cd21cf4a9e1eed6d8826b829fbc1f4ed9ddd
Andreas Schneider [Fri, 27 Mar 2020 07:24:55 +0000 (08:24 +0100)]
common: Label ro.simbased.changetype property
Change-Id: I515bf6bc0a016b10d3ef36c81204ad2a4e0b2fef
Andreas Schneider [Wed, 25 Mar 2020 17:02:06 +0000 (18:02 +0100)]
common: Allow the power hal to access its sysfs nodes
Change-Id: I27b94e8502500bb646d1afb104c390151fec6584
Andreas Schneider [Sun, 22 Mar 2020 12:45:02 +0000 (13:45 +0100)]
common: Allow fingerprint HAL to read fingerprint sysfs
Change-Id: Ib58c3c5f39fc0dd13f788a7caadf00706609daaf
Andreas Schneider [Sun, 22 Mar 2020 12:28:10 +0000 (13:28 +0100)]
common: Label sysfs fingerping nodes
Change-Id: I0bb666f4a070eb400e18e0080e193d40bcc7a694
Andreas Schneider [Sun, 22 Mar 2020 09:28:17 +0000 (10:28 +0100)]
teegris: Allow fingerpint HAL to access teegris
Change-Id: I1ccc91a1fab45d4cd59852cc6c200022faff119e
Andreas Schneider [Sun, 22 Mar 2020 10:01:28 +0000 (11:01 +0100)]
common: Allow fingerprint hal to create /data/vendor/biometrics
Change-Id: Ie0ce0aa067ee09ab30066384c3a831d6dc349d1f
Andreas Schneider [Sun, 22 Mar 2020 09:10:30 +0000 (10:10 +0100)]
common: Give fingerprint HAL access to fp_sensor_device
Change-Id: I74be51f532d8867bb084ceaccfa81b513ad5bbf6
Andreas Schneider [Sun, 22 Mar 2020 09:03:19 +0000 (10:03 +0100)]
common: Label biometrics fingerprint service
Change-Id: I583ef7a912b635293649f7a99442a235287e334f
Andreas Schneider [Sun, 22 Mar 2020 07:53:26 +0000 (08:53 +0100)]
common: Use property labels from system/sepolicy
Change-Id: I9f20f45d11c81b3fe3f7b38ee2785852cdf78e04
Andreas Schneider [Sat, 21 Mar 2020 19:18:02 +0000 (20:18 +0100)]
common: Label more camera properties
Change-Id: I8176ebf799f7ca7c619aaa099368d5c7e38d525b
Andreas Schneider [Sat, 21 Mar 2020 19:00:32 +0000 (20:00 +0100)]
common: Label ro.build.PDA
This is set to the Samsung PDA version of the ROM release:
ro.build.PDA=G970FXXU4BTA8
Change-Id: Ic86b07f707e23d3042bad1dbc6c247433a556206
Andreas Schneider [Sat, 21 Mar 2020 17:59:36 +0000 (18:59 +0100)]
common: Label omc props
Change-Id: I67841c605f6844efcfb034cc01511403478ae6c3
Andreas Schneider [Sat, 21 Mar 2020 17:00:59 +0000 (18:00 +0100)]
common: Add public properties
Change-Id: I6b7585681244c9b7e0b030538e97212776ca657e
Andreas Schneider [Mon, 16 Mar 2020 17:33:09 +0000 (18:33 +0100)]
common: Allow kernel to load firmware from /vendor/firmware
Change-Id: I4ec18a2857d1cc3a63aaf4e94904005a0c5fbc41
Andreas Schneider [Mon, 16 Mar 2020 17:29:10 +0000 (18:29 +0100)]
common: Add missing labeling of hw services
Change-Id: I4f6a06d8b7ab9de6ded3c250a398beac223b3df3
Andreas Schneider [Mon, 16 Mar 2020 17:23:06 +0000 (18:23 +0100)]
common: Add macloader
Change-Id: I07916e20a98c3836099e1ea8124537d7b05138b2
Andreas Schneider [Mon, 16 Mar 2020 17:10:39 +0000 (18:10 +0100)]
common: Add hal_vendor_hwcservice_default
Change-Id: Id99d963e16a5480b8e310bcc5be0de9f16dc6935
Andreas Schneider [Mon, 16 Mar 2020 17:12:46 +0000 (18:12 +0100)]
common: Add hal_vendor_configstore_default
Change-Id: I1cc20a87cfbec5bfda80b9480a1a78d036651dfb
Andreas Schneider [Sun, 15 Mar 2020 18:16:53 +0000 (19:16 +0100)]
tee: Add teegris_use() macro
Change-Id: Ib72ddded545728eda7ad12d76e37687ea119e840
Andreas Schneider [Sun, 15 Mar 2020 18:09:12 +0000 (19:09 +0100)]
tee: Add policy for teegris
Change-Id: I932448f021ba5da02d0469ff968529bc7981578a
Andreas Schneider [Thu, 12 Mar 2020 17:45:17 +0000 (18:45 +0100)]
The big bang!
Change-Id: I7a030e4dcc1115fc7ccf067272e4adb73ebe3af8
Kevin F. Haggerty [Tue, 31 Dec 2019 15:22:21 +0000 (08:22 -0700)]
Initial Commit