xiaomi-unicorn1/android_device_qcom_sepolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
3,645 Commits 50 Branches 0 Tags
unicorn-20.0
Commit Graph

3645 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
kuailexs
760737431d Revert "sepolicy:qcc: switch to platform app" 2024-02-29 21:59:53 +08:00
Michael Bestas
54b7abd8fc Merge tag 'LA.QSSI.13.0.r1-11100-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-11100-qssi.0 
"LA.QSSI.13.0.r1-11100-qssi.0"

# By Prachi Gupta
# Via Linux Build Service Account (1) and Prachi Gupta (1)
* tag 'LA.QSSI.13.0.r1-11100-qssi.0':
  Adding sepolicy changes in attributes for qspa aidl

Change-Id: Ie2b071558c5392e8ec5a338e02bf33e84b92074a
 2023-08-25 10:14:10 +03:00
Linux Build Service Account
c5a9733be9 Merge 8752eef505 on remote branch 
Change-Id: I3742727239a50c75d08cd8ebeb35dab8ec8da982
 2023-07-13 14:33:42 -07:00
Michael Bestas
7f9a2aeb1f Merge tag 'LA.QSSI.13.0.r1-10700-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-10700-qssi.0 
"LA.QSSI.13.0.r1-10700-qssi.0"

# By PavanKumar S.R (1) and others
# Via Linux Build Service Account (3) and Gerrit - the friendly Code Review server (2)
* tag 'LA.QSSI.13.0.r1-10700-qssi.0':
  sepolicy: add the attributes corresponding to the umdservice
  hwbinder permission for qti testscript for diag binary.
  Add rules to allow to set property
  AKS: sepolicy for gamepad

Change-Id: I1f60e9b60d0c6fb9d5030a6e80e5cbebe812ff65
 2023-07-11 16:14:11 +03:00
Prachi Gupta
8752eef505 Adding sepolicy changes in attributes for qspa aidl 
Change-Id: I5e342ea77da55117723e1d4e28b0169245311bf6
 2023-06-09 12:44:49 +05:30
Linux Build Service Account
c27454afeb Merge 6db3cc280e on remote branch 
Change-Id: I3deac33e643705c4910fff60ea02ba85786d356e
 2023-06-07 08:01:53 -07:00
Linux Build Service Account
90034f1dc7 Merge 1f3a299ed6 on remote branch 
Change-Id: I0c7a1e3394f0bd63bfe8ee506a8504d20e8f7bc9
 2023-05-26 09:39:03 -07:00
qctecmdr
6db3cc280e Merge "hwbinder permission for qti testscript for diag binary." 2023-05-26 02:47:44 -07:00
Yashaswini Guvvala
c9d7ea895c sepolicy: add the attributes corresponding to the umdservice 
Change-Id: I1102eda821c08084eccbdd2162b68989aed7c628
 2023-05-23 00:05:26 -07:00
PavanKumar S.R
920ceae22f hwbinder permission for qti testscript for diag binary. 
Change-Id: Idd85226905128e661bbf1b2676a40d5727a77bf4
 2023-05-16 14:44:18 +05:30
Samyak Jain
1f3a299ed6 Add rules to allow to set property 
Change-Id: I56fac5f23a27a3a71ef700569cd9c9429785ff15
 2023-05-15 05:12:44 -07:00
Linux Build Service Account
b8aeaca3fa Merge 1c5a88def6 on remote branch 
Change-Id: Ic56640463805a6a6ccfb87c8348c72a22f2d2578
 2023-05-01 10:19:17 -07:00
Michael Bestas
2bcf1301d7 Merge tag 'LA.QSSI.13.0.r1-09400-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-09400-qssi.0 
"LA.QSSI.13.0.r1-09400-qssi.0"

# By Swarn Singh
# Via Gerrit - the friendly Code Review server (1) and others
* tag 'LA.QSSI.13.0.r1-09400-qssi.0':
  Add sepolicy for qtiwifiservice to interact with IWifi hidl

Change-Id: Ie1aa0f997fbc7614f9dca82daa7a10e6097ee46e
 2023-03-24 03:05:06 +02:00
quic_farenl
1c5a88def6 AKS: sepolicy for gamepad 
Change-Id: I8d0ece364154a09f6cb41780163e71e9ae10c416
 2023-02-22 15:51:11 +08:00
Linux Build Service Account
ff51de5265 Merge 24b6f4de56 on remote branch 
Change-Id: If0e9a88509be8dcdd0a1ea4ce9c61d1b85dcd286
 2023-01-15 15:52:06 -08:00
Michael Bestas
4752f7e9b5 Merge tag 'LA.QSSI.13.0.r1-08300-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-08300-qssi.0 
"LA.QSSI.13.0.r1-08300-qssi.0"

# By Himanshu Shukla
# Via Linux Build Service Account (1) and Stephen Thomas-Dorin (1)
* tag 'LA.QSSI.13.0.r1-08300-qssi.0':
  IMS: sepolicy for dcservice

Change-Id: I0a202e2e0d7b3f216cb5425bada5c25f8bfac273
 2023-01-10 18:56:24 +02:00
qctecmdr
24b6f4de56 Merge "Add sepolicy for qtiwifiservice to interact with IWifi hidl" 2022-12-27 00:42:37 -08:00
Linux Build Service Account
b27cd93269 Merge b9f9bee2e6 on remote branch 
Change-Id: I4569bd8b527303fccb8376faf57890eb152ab8f0
 2022-12-13 05:29:00 -08:00
Himanshu Shukla
b9f9bee2e6 IMS: sepolicy for dcservice 
desc: Add sepolicy for dcservice in dataappservice

Change-Id: Idf332e1df33c06b783b17b82ddfa4791dbdc68d9
 2022-12-06 23:40:25 -08:00
Michael Bestas
c8bde922d3 Merge tag 'LA.QSSI.13.0.r1-07500-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-07500-qssi.0 
"LA.QSSI.13.0.r1-07500-qssi.0"

# By Sanghoon Shin (2) and yingjiew (1)
# Via Gerrit - the friendly Code Review server (2) and Linux Build Service Account (1)
* tag 'LA.QSSI.13.0.r1-07500-qssi.0':
  sepolicy:qcc: switch to platform app
  sepolicy:qcc: switch to platform app
  Rm LocAidlGnss in hal_gnss_service domain of QSSI

Change-Id: I7db39ffd8fbc8b72a0bc2b46cfd69c5c10c85d7a
 2022-11-09 18:59:24 +02:00
Linux Build Service Account
1b4f8a8371 Merge 5ee01b621c on remote branch 
Change-Id: I490832c59265789b8105397c91dab9f6e8a72ceb
 2022-10-27 15:09:48 -07:00
qctecmdr
5ee01b621c Merge "Rm LocAidlGnss in hal_gnss_service domain of QSSI" 2022-10-09 02:20:59 -07:00
Michael Bestas
583ef74f92 Merge tag 'LA.QSSI.13.0.r1-07100-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-07100-qssi.0 
"LA.QSSI.13.0.r1-07100-qssi.0"

# By rnamala (2) and others
# Via Linux Build Service Account (3) and Gerrit - the friendly Code Review server (2)
* tag 'LA.QSSI.13.0.r1-07100-qssi.0':
  Added permission for platform app to dsp hal
  Added permission for platform app to dsp hal
  Allow untrusted apps to be client of the QSPM HAL server
  Added permission for untrusted app to dsp hal
  Perf: dontaudit domain while reading vendor.perf.framepacing.

Change-Id: I24f88be5a32b42aae1f6fa5f40981d2961fa7159
 2022-10-05 18:09:28 +03:00
Michael Bestas
41f132b758 Revert "[SQUASH] Merge tag 'LA.QSSI.13.0.r1-07100-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-07100-qssi.0" 
This reverts commit 532dca565a.

Reason for revert: Pushed squash instead of normal merge

Change-Id: Ice8972805fda62ac90408f8faddc5348c20e6353
 2022-10-05 16:51:23 +02:00
Michael Bestas
532dca565a [SQUASH] Merge tag 'LA.QSSI.13.0.r1-07100-qssi.0' into staging/lineage-20.0_merge-LA.QSSI.13.0.r1-07100-qssi.0 
"LA.QSSI.13.0.r1-07100-qssi.0"

# By rnamala (2) and others
# Via Linux Build Service Account (3) and Gerrit - the friendly Code Review server (2)
* tag 'LA.QSSI.13.0.r1-07100-qssi.0':
  Added permission for platform app to dsp hal
  Added permission for platform app to dsp hal
  Allow untrusted apps to be client of the QSPM HAL server
  Added permission for untrusted app to dsp hal
  Perf: dontaudit domain while reading vendor.perf.framepacing.

Change-Id: Ib6dfef9db7f21a092a95ad0fa9b67cc103c2f76e
 2022-10-03 17:25:49 +03:00
Sanghoon Shin
61a4b18687 sepolicy:qcc: switch to platform app 
qcc app domain switch to platform app from  system

Change-Id: I661fef3af7d0a9518f67e14f2787999f268485e0
 2022-10-01 08:20:38 -07:00
Sanghoon Shin
086c870a83 sepolicy:qcc: switch to platform app 
qcc app domain switch to platform app from  system

Change-Id: I661fef3af7d0a9518f67e14f2787999f268485e0
 2022-09-28 10:03:47 -07:00
yingjiew
d25c3794fb Rm LocAidlGnss in hal_gnss_service domain of QSSI 
It's declared in Vendor partition now.

Change-Id: I4f46b9125d4354363cd0f5b33c00deb935c36f18
CRs-Fixed: 3300591
 2022-09-27 12:15:26 +08:00
Michael Bestas
3dffc71426 Move qti-testscripts definition out of userdebug_or_eng check 
sepolicy compat_test tests fail to compile on user builds because
of the missing definitions.

Test: breakfast FP4 user && m
Change-Id: I9e5ba85a48e757cdf45e90103b3ce10f22a912d0
 2022-09-26 05:40:52 +03:00
Swarn Singh
5ceea3df2a Add sepolicy for qtiwifiservice to interact with IWifi hidl 
This commit defines required sepolicy rules for qtiwifiservice apk to
interact with IWifi HAL.

Change-Id: Icabbee484129fc3e686d6c3076ccc87612ecc0fc
CRs-Fixed: 3282372
 2022-09-21 00:14:34 +05:30
Linux Build Service Account
fb09b4deac Merge ff13a793b8 on remote branch 
Change-Id: If4c66b3f27dd2c28854d6c1eb8f99e0d736e4ea3
 2022-09-19 07:37:01 -07:00
rnamala
0733a8e891 Added permission for platform app to dsp hal 
Added rule to give platform app permission to
access dsp hal

Change-Id: Iefea1fc997fec42d9bc3d50e0c21ea85df1122da
 2022-09-08 11:13:06 -07:00
Linux Build Service Account
e6dcd0aaff Merge 4f139aa642 on remote branch 
Change-Id: I43c09c6e12c7b8e81ebd58a92f8875202aa6ffe6
 2022-09-05 08:24:27 -07:00
rnamala
ff13a793b8 Added permission for platform app to dsp hal 
Added rule to give platform app permission to
access dsp hal

Change-Id: Iefea1fc997fec42d9bc3d50e0c21ea85df1122da
 2022-09-01 15:53:46 +05:30
LuK1337
53182982e7 generic: Add typeattribute definitions for 30.0 compat 
cp generic/prebuilts/api/30.0/private/compat/30.0/30.0.cil \
    generic/private/compat/30.0/30.0.cil
cp generic/product/prebuilts/api/30.0/private/compat/30.0/30.0.cil \
    generic/product/private/compat/30.0/30.0.cil

Change-Id: If3cfcfd0c35c95ecd53473b99d6e9cb6df4cc396
 2022-08-31 00:49:15 +02:00
LuK1337
2ac79ef538 generic: Add newline at the end of service_contexts 
Fixes system_ext_service_context merging.

Change-Id: Ifcfb2ce3315b45cb26a4ef212bb981d39246ff80
 2022-08-30 22:37:56 +02:00
Arian
eb0b85aa45 generic: Don't dontaudit vendor_persist_camera_prop read denials 
This needs to be allowed in order for
I15910154c6df205e6d4e00bfad30a00c9e3d5bee to work. This will be
allowed in device/lineage/sepolicy.

Change-Id: Ie22121ee75e048bfa002d8980e15aeab1376f6b4
 2022-08-24 01:31:29 +03:00
dianlujitao
f82da960db sepolicy: Unlabel aux camera whitelist prop 
* This will be properly labeled in device/lineage/sepolicy
   to make it readable to everything on every device

Change-Id: Idec6cad06c51ba73519f61e95c74e1c8915d301b
 2022-08-24 01:31:02 +03:00
Pig
9a02bfb7e2 sepolicy: Remove QCOM guards 
Change-Id: I0efd0b96f45ecfa9eec0b98087f0582dcd282798
 2022-08-24 01:31:02 +03:00
Chirayu Desai
0d5820ad6f Add .gitupstream file 
Change-Id: I09a51a0b5f5826488a1596bcaf81bf0ed26a258c
 2022-08-24 01:31:02 +03:00
Linux Build Service Account
f77c618228 Merge 267621e9b9 on remote branch 
Change-Id: I8d5b8bf69c48ea0c734a79ffc6efc1ef7ea67b3d
 2022-08-22 12:49:57 -07:00
Linux Build Service Account
acc2228d8b Merge d06f611f1e on remote branch 
Change-Id: Ic33d849e9b08d02f1d19791fd7b66b75e440b724
 2022-08-10 11:34:30 -07:00
qctecmdr
4f139aa642 Merge "Added permission for untrusted app to dsp hal" 2022-08-09 01:04:10 -07:00
Kripa Bhat
267621e9b9 Allow untrusted apps to be client of the QSPM HAL server 
Allow untrusted APK to be a client of the QSPM HAL
server on user builds. Added to support gpu profiling

Change-Id: Ie59acf54dfbfc23c6aae49ac0156e3a4d7258bf3
 2022-08-04 00:26:48 -07:00
Anirudh Radhakrishnan
97cc373a25 Added permission for untrusted app to dsp hal 
Added rule to give unstrusted app permission to
access dsp hal

Change-Id: I8655ebedec1a4065e17b3972c02f44d45f312890
 2022-08-02 00:55:07 -07:00
Libo Jin
eb134bd761 Perf: dontaudit domain while reading vendor.perf.framepacing. 
CRs-Fixed: 3253303
Change-Id: I7d7865103f9b8e2f6ee9572a451f565c03a30d28
 2022-07-28 00:33:32 -07:00
qctecmdr
d06f611f1e Merge "sepolicy: Add new Sepolicy context for WFD R2 Enablement Property" 2022-07-14 13:41:52 -07:00
Harikrishnan Hariharan
099d3a52f0 location : add dontaudit rule for vendor_location_app 
Add dontaudit rule for vendor_location_app write access for dir
with system_file context. Denial was observed during stress test.
vendor_location_app does not require this permission, so adding
dontaudit rule.

Change-Id: I5505baa2f6db2a35d8609fb254d68f21283419bb
CRs-Fixed: 3239092
 2022-07-08 11:20:18 +05:30
Linux Build Service Account
416969a630 Merge 6ec871b660 on remote branch 
Change-Id: I1109d96fcdffafa8f9e494a02ccbfe22df2963ce
 2022-07-07 05:19:44 -07:00
Arun Kumar Neelakantam
20134693c9 sepolicy: Add systemhelper_app binder calls 
Add systemhelper_app binder client/server calls to allow clients to get
required permissions with hal_client_domain().

Change-Id: I1e181f2f03c32e013143b61d9caac7e720b4bdca
 2022-06-24 01:52:16 -07:00