Merge "sepolicy : inital sepolicy files for bengal config"
This commit is contained in:
qctecmdr
committed by
Gerrit - the friendly Code Review server
Gerrit - the friendly Code Review server
commit
375e6730cd
31
qva/vendor/bengal/device.te
vendored
Normal file
31
qva/vendor/bengal/device.te
vendored
Normal file
@@ -0,0 +1,31 @@
|
||||
# Copyright (c) 2019, The Linux Foundation. All rights reserved.
|
||||
#
|
||||
# Redistribution and use in source and binary forms, with or without
|
||||
# modification, are permitted provided that the following conditions are
|
||||
# met:
|
||||
# * Redistributions of source code must retain the above copyright
|
||||
# notice, this list of conditions and the following disclaimer.
|
||||
# * Redistributions in binary form must reproduce the above
|
||||
# copyright notice, this list of conditions and the following
|
||||
# disclaimer in the documentation and/or other materials provided
|
||||
# with the distribution.
|
||||
# * Neither the name of The Linux Foundation nor the names of its
|
||||
# contributors may be used to endorse or promote products derived
|
||||
# from this software without specific prior written permission.
|
||||
#
|
||||
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED
|
||||
# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
|
||||
# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT
|
||||
# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS
|
||||
# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
|
||||
# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
|
||||
# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
|
||||
# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
||||
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
|
||||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
type vendor_logdump_partition, dev_type;
|
||||
type vendor_mba_debug_dev, dev_type;
|
||||
type vendor_dip_device, dev_type;
|
||||
type vendor_rawdump_block_device, dev_type;
|
||||
27
qva/vendor/bengal/file.te
vendored
Normal file
27
qva/vendor/bengal/file.te
vendored
Normal file
@@ -0,0 +1,27 @@
|
||||
# Copyright (c) 2018-2020, The Linux Foundation. All rights reserved.
|
||||
# Redistribution and use in source and binary forms, with or without
|
||||
# modification, are permitted provided that the following conditions are
|
||||
# met:
|
||||
# * Redistributions of source code must retain the above copyright
|
||||
# notice, this list of conditions and the following disclaimer.
|
||||
# * Redistributions in binary form must reproduce the above
|
||||
# copyright notice, this list of conditions and the following
|
||||
# disclaimer in the documentation and/or other materials provided
|
||||
# with the distribution.
|
||||
# * Neither the name of The Linux Foundation nor the names of its
|
||||
# contributors may be used to endorse or promote products derived
|
||||
# from this software without specific prior written permission.
|
||||
#
|
||||
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED
|
||||
# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
|
||||
# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT
|
||||
# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS
|
||||
# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
|
||||
# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
|
||||
# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
|
||||
# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
||||
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
|
||||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
type vendor_sysfs_fps_attr, fs_type, sysfs_type;
|
||||
132
qva/vendor/bengal/file_contexts
vendored
132
qva/vendor/bengal/file_contexts
vendored
@@ -27,3 +27,135 @@
|
||||
|
||||
# Bluetooth LAZY HAL
|
||||
/vendor/bin/hw/android\.hardware\.bluetooth@1\.0-service-qti-lazy u:object_r:hal_bluetooth_default_exec:s0
|
||||
###################################
|
||||
# Dev block nodes
|
||||
|
||||
#Primary storage device nodes
|
||||
/dev/block/mmcblk0rpmb u:object_r:vendor_rpmb_device:s0
|
||||
/dev/mmcblk0rpmb u:object_r:vendor_rpmb_device:s0
|
||||
/dev/block/mmcblk0 u:object_r:root_block_device:s0
|
||||
|
||||
# UFS Devices
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/system u:object_r:system_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/metadata u:object_r:metadata_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/userdata u:object_r:userdata_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/boot u:object_r:boot_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/logdump u:object_r:vendor_logdump_partition:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/fsc u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/fsg u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/modemst1 u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/modemst2 u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/ssd u:object_r:vendor_ssd_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/misc u:object_r:misc_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/rpm u:object_r:vendor_rpmb_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/msadp u:object_r:vendor_mba_debug_dev:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/recovery u:object_r:recovery_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/cache u:object_r:cache_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/frp u:object_r:frp_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/mdtp u:object_r:vendor_mdtp_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/dip u:object_r:vendor_dip_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/super u:object_r:super_block_device:s0
|
||||
|
||||
#rawdump partition
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/rawdump u:object_r:vendor_rawdump_block_device:s0
|
||||
|
||||
# A/B partitions.
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/abl_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/aop_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/apdp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/bluetooth_[ab] u:object_r:vendor_modem_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/boot_[ab] u:object_r:boot_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/cmnlib_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/cmnlib64_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/devcfg_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/dsp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/dtbo_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/hyp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/keymaster_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/mdtp_[ab] u:object_r:vendor_mdtp_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/mdtpsecapp_[ab] u:object_r:vendor_mdtp_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/modem_[ab] u:object_r:vendor_modem_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/msadp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/persist u:object_r:vendor_persist_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/pmic_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/qupfw_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/rpm_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/system_[ab] u:object_r:system_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/tz_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/vbmeta_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/vendor_[ab] u:object_r:system_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/xbl_[ab] u:object_r:vendor_xbl_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/xbl_config_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/imagefv_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/uefisecapp_[ab] u:object_r:vendor_uefi_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/recovery_[ab] u:object_r:recovery_block_device:s0
|
||||
/dev/block/platform/soc/4804000.ufshc/by-name/vbmeta_system_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
|
||||
# Block device holding the GPT, where the A/B attributes are stored.
|
||||
/dev/block/platform/soc/4804000.ufshc/sd[ade] u:object_r:vendor_gpt_block_device:s0
|
||||
|
||||
# Block devices for the drive that holds the xbl_a and xbl_b partitions.
|
||||
/dev/block/platform/soc/4804000.ufshc/sd[bc] u:object_r:vendor_xbl_block_device:s0
|
||||
|
||||
#for eMMC
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/abl_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/apdp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/boot_[ab] u:object_r:boot_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/cmnlib_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/cmnlib64_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/devcfg_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/hyp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/keymaster_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/modem_[ab] u:object_r:vendor_modem_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/bluetooth_[ab] u:object_r:vendor_modem_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/msadp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/pmic_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/rpm_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/system_[ab] u:object_r:system_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/tz_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/vendor_[ab] u:object_r:system_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/xbl_[ab] u:object_r:vendor_xbl_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/aop_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/vbmeta_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/dtbo_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/dsp_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/mdtp_[ab] u:object_r:vendor_mdtp_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/mdtpsecapp_[ab] u:object_r:vendor_mdtp_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/qupfw_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/xbl_config_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/storsec_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/imagefv_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/uefisecapp_[ab] u:object_r:vendor_uefi_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/recovery_[ab] u:object_r:recovery_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/vbmeta_system_[ab] u:object_r:vendor_custom_ab_block_device:s0
|
||||
|
||||
#non A/B
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/system u:object_r:system_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/metadata u:object_r:metadata_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/userdata u:object_r:userdata_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/boot u:object_r:boot_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/logdump u:object_r:vendor_logdump_partition:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/fsc u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/fsg u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/modemst1 u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/modemst2 u:object_r:vendor_modem_efs_partition_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/ssd u:object_r:vendor_ssd_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/misc u:object_r:misc_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/rpm u:object_r:vendor_rpmb_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/msadp u:object_r:vendor_mba_debug_dev:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/recovery u:object_r:recovery_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/cache u:object_r:cache_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/frp u:object_r:frp_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/mdtp u:object_r:vendor_mdtp_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/dip u:object_r:vendor_dip_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/storsec u:object_r:boot_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/persist u:object_r:vendor_persist_block_device:s0
|
||||
/dev/block/platform/soc/4744000.sdhci/by-name/super u:object_r:super_block_device:s0
|
||||
|
||||
# FBE
|
||||
/vendor/bin/init.qti.qseecomd.sh u:object_r:vendor_init-qti-fbe-sh_exec:s0
|
||||
|
||||
##################################
|
||||
# same process HAL libs
|
||||
/vendor/lib(64)?/hw/vulkan\bengal\.so u:object_r:same_process_hal_file:s0
|
||||
/vendor/lib(64)?/hw/gralloc\.bengal\.so u:object_r:same_process_hal_file:s0
|
||||
|
||||
45
qva/vendor/bengal/genfs_contexts
vendored
Normal file
45
qva/vendor/bengal/genfs_contexts
vendored
Normal file
@@ -0,0 +1,45 @@
|
||||
# Copyright (c) 2019, The Linux Foundation. All rights reserved.
|
||||
#
|
||||
# Redistribution and use in source and binary forms, with or without
|
||||
# modification, are permitted provided that the following conditions are
|
||||
# met:
|
||||
# * Redistributions of source code must retain the above copyright
|
||||
# notice, this list of conditions and the following disclaimer.
|
||||
# * Redistributions in binary form must reproduce the above
|
||||
# copyright notice, this list of conditions and the following
|
||||
# disclaimer in the documentation and/or other materials provided
|
||||
# with the distribution.
|
||||
# * Neither the name of The Linux Foundation nor the names of its
|
||||
# contributors may be used to endorse or promote products derived
|
||||
# from this software without specific prior written permission.
|
||||
#
|
||||
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED
|
||||
# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
|
||||
# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT
|
||||
# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS
|
||||
# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
|
||||
# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
|
||||
# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
|
||||
# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
||||
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
|
||||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
###################################
|
||||
|
||||
#TODO: As of lines are commented once testing is done we should be enabling
|
||||
# with actual paths .
|
||||
|
||||
# Power supply device nodes
|
||||
|
||||
#qdss sysfs-node
|
||||
genfscon sysfs /devices/platform/soc/soc:hwevent/coresight-hwevent u:object_r:vendor_sysfs_qdss_dev:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:dummy_source/coresight-modem-diag u:object_r:vendor_sysfs_qdss_dev:s0
|
||||
|
||||
# PMIC UI peripherals
|
||||
|
||||
# DCVS nodes
|
||||
|
||||
#net sysfs
|
||||
|
||||
#fps sysfs-node
|
||||
|
||||
Reference in New Issue
Block a user