MiPad4/android_device_xiaomi_sdm660-common
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4100 commits 1 branch 0 tags 12 MiB
Commit graph

210 commits

Author SHA1 Message Date
Max Weffers
6bbcfb4c1d
sdm660: sepolicy: fix denials while fingerprint enrollment 2019-12-30 23:00:40 +01:00
Max Weffers
946a233a4b
sdm660: sepolicy: Add AuthSecret HAL service 2019-12-23 08:59:25 +01:00
Stylogey
25dadea83b
sdm660-common: XiaomiParts: Start folio_daemon only if a prop is set 2019-12-13 16:57:53 +01:00
Michael Bestas
559890d4f6
sdm660-common: sepolicy: Remove deprecated power HAL stats policies 2019-12-07 18:49:55 +01:00
Michael Bestas
f12fb26fcd
sdm660-common: sepolicy: Allow power off alarm app to set cpuset 
* P blob compatibility

Change-Id: I3b8c58ab917dcbf2f142729feb5e6f6adcfc9fdd
 2019-12-02 07:57:05 +01:00
Michael Bestas
ec75167d10
sdm660-common: sepolicy: Allow rmt_storage access sysfs_ssr 
* P blob compatibility

Change-Id: Ib88c81c8cb4a19c7afd322cfef9b812c2f029a34
 2019-12-02 07:57:05 +01:00
LuK1337
348b308650
sdm660-common: sepolicy: Address time_daemon denials 
Change-Id: I83947a673ed19cfc20c130fb133d1957aa44d284
 2019-12-02 07:56:49 +01:00
Michael Bestas
4f0e9000c9
sdm660-common: Build vendor variant of tinymix 
* Avoid SELinux neverallows, vendor services should use vendor tools

Change-Id: I2a97658db9a31dd0403f1b62386db2987bd9749c
 2019-12-01 10:27:53 +01:00
Nick Kralevich
160b13b9df
sdm660: folio_daemon: Add system_file_type in sepolicy 
This file resides on /system, so must be annotated with the
system_file_type attribute.

Test: Policy compiles.
Change-Id: Ic834caefe1417465ac842ddce909e968511f45b2
 2019-10-19 20:51:10 +02:00
Jeff Vander Stoep
c145e57b0f
sdm660: Move folio_daemon to system in sepolicy 
Remove Treble violations.

Bug: 36867326
Bug: 62387246
Test: loaded on taimen, checked dmesg, and tested daemon with magnet
Change-Id: I4662b41206b94cae6ac9843b5dc7e1452003c63c
 2019-10-19 20:50:52 +02:00
Jeff Vander Stoep
494ee17d12
sdm660: Add folio_daemon in sepolicy 2019-10-19 16:29:57 +02:00
Andrew Lehmer
f08faed4c3
sdm660: Add support for folio cases 
Bug: 35243564
Test: Used magnet to wake and lock device. Also tested during suspend.
Change-Id: I4b819e12cc23a3d7a8ce048e208c15eac4f8d6c5
 2019-10-19 16:29:57 +02:00
dianlujitao
9cea8c75c9
sdm660-common: Set sys.post_boot.parsed on vendor.post_boot.parsed changed 
Change-Id: Ibb924cd28408d9688e18d64b5b22ab10f1fc5227
 2019-10-15 16:31:29 +02:00
Max Weffers
f3b7c8bb63
sdm660: sepolicy: Start Q Bringup 2019-10-01 14:24:08 +02:00
Volodymyr Zhdanov
850c987c27
sdm660-common: remove input devices policies 
* it's already fixed in system/sepolicy

Change-Id: If1bf165092df71cdc85a7a9118feb257e2bed350
 2019-10-01 14:24:07 +02:00
Volodymyr Zhdanov
dfd6d14563
sdm660-common: sepolicy: add firmware labels 
* Q sepolicy doesn't have labels for these root folders anymore

Change-Id: Ibc1f13968eb4de0868de149f1347ca07da1c581c
 2019-09-27 17:27:20 +02:00
Max Weffers
8d090cc4db
sdm660-common: sepolicy: fix Camera denials for access camera data 
* needed for clover oreo blobs
 2019-08-20 23:11:46 +02:00
Hexdecimal16
aefda184e2
sdm660-common: sepolicy: address vibrator denial 2019-08-20 10:39:43 +02:00
Max Weffers
fab35d3231
sdm660-common: sepolicy: Grant XiaomiParts access to thermal file 2019-08-20 10:39:43 +02:00
Henrique Silva
88f57be2a9
sdm660-common: dirac: Address denials 
Signed-off-by: Harsh Shandilya <msfjarvis@gmail.com>
 2019-08-20 10:39:43 +02:00
Max Weffers
e20f8804d6
sdm660-common: Adress denials for Hall Switch 2019-08-20 10:39:43 +02:00
SagarMakhar
409cd433a0
sdm660-common: Add sepolicy for kcal 
Signed-off-by: bablusss <baaswanthmadhav@gmail.com>
 2019-08-20 10:39:43 +02:00
Max Weffers
15ec448fb0
sdm660: sepolicy: Fix denial for smart charging 2019-08-20 10:39:43 +02:00
Kevin F. Haggerty
d34b30b2e6
sdm660-common: Allow dnsmasq to getattr netd unix_stream_socket 
* Noted upon starting wifi tether
* avc: denied { getattr } for path="socket:[11154]" dev="sockfs"
  ino=11154 scontext=u:r:dnsmasq:s0 tcontext=u:r:netd:s0
  tclass=unix_stream_socket permissive=0

Change-Id: I98afc740fda3eb87a627abc414525b05f6877e33
 2019-08-15 15:31:32 +02:00
TheScarastic
71abd10485
sdm660-common: Add sepolicy rule for goodix script 
Change-Id: Ic8b7dba6a5660c17f5db1c743e5d22f31ae1b1b3
 2019-08-15 15:31:17 +02:00
Max Weffers
5bf9fe7f2c
sdm660-common: sepolicy: Grant power hal permission for dt2w 2019-08-15 15:31:17 +02:00
Max Weffers
782a520d58
sdm660: sepolicy: Fix more system_server denials 2019-08-15 15:31:17 +02:00
Max Weffers
6086052825
sdm660: sepolicy: Let fingerprint Hal setup properties 2019-08-15 15:31:17 +02:00
Max Weffers
4278ca6cf6
sdm660: sepolicy: Address rild denials 2019-08-15 15:31:17 +02:00
Max Weffers
7b049283ea
sdm660: sepolicy: Allow vendor_init to set props 2019-08-15 15:31:17 +02:00
Max Weffers
20f13a6298
sdm660: sepolicy: Label sys.listeners.registered as tee_listener_prop 2019-08-15 15:31:17 +02:00
Max Weffers
187b868fcc
sdm660: Add Hardware Info permssions and sepolicy rules 2019-08-15 15:31:17 +02:00
Max Weffers
1e1cbb13c4
sdm660-common: libinit: Set device specific changes via libinit 
Change-Id: I9a2dea3291b76d185d9ecda524a4234b6ed25412
 2019-08-15 15:31:07 +02:00
Ethan Chen
c0e0aee3a4
sdm660-common: Add basic USB HAL that reports no status change 
Change-Id: I6d130d324753c03ac514c4500c5764bfa46941dc
Signed-off-by: SakilMondal <mondalsakil@gmail.com>
 2019-08-15 15:27:20 +02:00
Artem Borisov
06d687c9db
sdm660-common: sepolicy: Resolve init_fingerprint denials 
Change-Id: Id82f4c6440aeed6a7be6182792c40513102c9f28
Signed-off-by: Akhil Narang <akhilnarang.1999@gmail.com>
 2019-08-14 10:04:14 +02:00
dianlujitao
50ae11d634
sdm660-common: sepolicy: Label RTC sysfs node 
Change-Id: I637df23926d307de028eb30e523ebb8e92ed2b43
 2019-08-14 10:04:14 +02:00
Subhajeet Muhuri
91a80aa4cc
sdm660-common: sepolicy: Address webview_zygote denials 2019-08-14 10:04:14 +02:00
Subhajeet Muhuri
84cbc85b66
sdm660-common: sepolicy: Label fingeprints extension 2019-08-14 10:04:14 +02:00
Subhajeet Muhuri
3dc8126a30
sdm660-common: sepolicy: Label battery_supply sysfs for hvdcp 2019-08-14 10:04:14 +02:00
GuaiYiHu
03a676c21c
sdm660-common: sepolicy: Clean up fingerprint sepolicy 
Change-Id: I19f90ba121ca79ea9e676d066ea857ea6ab7a385
 2019-08-14 10:04:14 +02:00
Henrique Silva
1de7f3c202
sdm660-common: sepolicy: Address debugfs_wlan denials 
Signed-off-by: Akhil Narang <akhilnarang.1999@gmail.com>
Signed-off-by: Subhajeet Muhuri <kenny3fcb@gmail.com>
 2019-08-14 10:04:14 +02:00
Subhajeet Muhuri
4c7cba649a
sdm660-common: sepolicy: Dontaudit few qti_init_shell neverallows 2019-08-14 10:04:14 +02:00
Subhajeet Muhuri
0e89ed5c61
sdm660-common: sepolicy: Address more vendor_init denials 2019-08-14 10:04:14 +02:00
Tom Cherry
f3aa8e3d2b
sdm660-common: sepolicy: Add restricted permissions to vendor_init 
The core SEPolicy for vendor_init is being restricted to the proper
Treble restrictions.  Since this is a legacy device, it is tagged as a
data_between_core_and_vendor_violators and the needed permissions are
added to its device specific vendor_init.te

Bug: 62875318
Test: boot walleye without audits
Change-Id: I13aaa2278e71092d740216d3978dc720afafe8ea
Signed-off-by: Subhajeet Muhuri <kenny3fcb@gmail.com>
 2019-08-14 10:04:13 +02:00
GuaiYiHu
36ef559156
sdm660-common: sepolicy: Lable gpu.stats.debug.level 
Change-Id: I01e010a33a52abc42c9da3977503fabcb7c30455
 2019-08-14 10:04:13 +02:00
GuaiYiHu
10c35314f7
sdm660-common: sepolicy: Label thermal-engine props 
Change-Id: I1bf975bd6f20e56bfb4ff558d2a55f7304ceec6f
 2019-08-14 10:04:13 +02:00
GuaiYiHu
d2ce22775d
sdm660-common: sepolicy: Address camera denials 
Change-Id: I052adadca396fb104af49daec1d83047d0809416
 2019-08-14 10:04:13 +02:00
GuaiYiHu
1ee97f41fc
sdm660-common: sepolicy: Clean up sepolicy 
Change-Id: I19f90ba121ca79ea9e676d066ea857ea6ab7a385
 2019-08-14 10:04:13 +02:00
GuaiYiHu
05085a02e2
sdm660: sepolicy: Address denials 
Change-Id: I8fad5d60ca066b758c526f2027985b63662180cc
 2019-08-14 10:04:13 +02:00
Max Weffers
cb1b743b8d
sdm660-common: Transform into common sdm660 tree 2019-08-14 10:04:10 +02:00
Dan Cashman
b1f434c446
wayne-common: Add BOARD_PLAT_[PUBLIC|PRIVATE]_SEPOLICY_DIR 
Move vendor policy to vendor and add a place for system extensions.
Also add such an extension: a labeling of the qti.ims.ext service.

Bug: 38151691
Bug: 62041272
Test: Policy binary identical before and after, except plat_service_contexts
has new service added.
Change-Id: Ie4e8527649787dcf2391b326daa80cf1c9bd9d2f

Change-Id: I1493c4c8876c4446a1de46b39942098bf49c79f8
 2019-08-14 10:04:10 +02:00
Isaac Chen
c4214a9df8
wayne-common: Address denials for P 
Signed-off-by: Isaac Chen <tingyi364@gmail.com>
 2019-08-14 10:04:10 +02:00
dianlujitao
8ff49b15bd
wayne-common: Access mlipay hal via a binder service 
* Untrusted apps are no longer allowed to directly access hwbinder on
   Pie, implement a system service as a middleware between mlipay hal
   and untrusted apps.
 * Xiaomi uses similar solution for MIUI on Pie.

Change-Id: Ie52376b1f7bcd84d219fe73bceb4bdd6cc2b9980
 2019-08-14 10:04:10 +02:00
dianlujitao
63ec762eee
wayne-common: Support Alipay fingerprint payment 
* IFAA manager is based on OnePlusOSS, but adapted for Xiaomi's mlipay
   interface.Also hardcode model detection to pass Alipay check.
 * vendor.xiaomi.hardware.mtdservice@1.0.so is not actually used, thus
   patchelf to drop it rather than shipping a blob.
 * Modify libmlipay.so to allow load firmware from vendor

Change-Id: Idf3d3a8d40245984767f4ef5f60f9fe584e69f21
 2019-08-14 10:04:10 +02:00
Bruno Martins
5fd30f742d wayne-common: rootdir: Remove sensors init shell script 
Change-Id: Ice50a9c83a708d7f8300978048cd00c71e88abc8
 2019-07-01 14:15:04 +02:00
Isaac Chen
d6ed30131a wayne: sepolicy: Address IR denials 
Signed-off-by: Isaac Chen <isaacchen@isaacchen.cn>
 2018-08-05 00:00:16 +00:00
Isaac Chen
3eebbc8ec1 wayne: sepolicy: Address btnvtool denial 
Signed-off-by: Isaac Chen <isaacchen@isaacchen.cn>
 2018-07-31 00:00:10 +00:00
Isaac Chen
8f63059aea wayne: sepolicy: Address camera denials 
Signed-off-by: Isaac Chen <isaacchen@isaacchen.cn>
 2018-07-31 00:00:10 +00:00
TheScarastic
80a669c55a wayne: sepolicy: Add sepolicy for goodix script 
Change-Id: Ic8b7dba6a5660c17f5db1c743e5d22f31ae1b1b3
 2018-07-31 00:00:10 +00:00
Isaac Chen
a59e765afb wayne: sepolicy: Initial denials 
Signed-off-by: Isaac Chen <isaacchen@isaacchen.cn>
 2018-07-27 00:00:11 +00:00