Piteball
/
android_device_samsung_msm8976-common
mirror of https://github.com/team-infusion-developers/android_device_samsung_msm8976-common.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
320 Commits 1 Branch 0 Tags 1.5 MiB
Commit Graph

29 Commits

Author SHA1 Message Date
LuK1337 2ff56657dd msm8976-common: sepolicy: Sync timekeep rules with SODP 2018-02-12 18:34:12 +01:00
LuK1337 ee0365443e msm8976-common: Timekeep is now in /vendor 2018-02-12 18:34:12 +01:00
LuK1337 dfde1bbb16 msm8976-common: sepolicy: Add rules for RIL 2018-02-12 18:34:11 +01:00
LuK1337 d44c7bd9b8 msm8976-common: sepolicy: Allow init to setattr on sysfs symlinks 
* Required for sx9310_grip sensor.
 2018-02-12 18:34:11 +01:00
LuK1337 6cc79a1df7 msm8976-common: sepolicy: Allow timekeep to read "since_epoch" 
* We don't really need to relabel it since we trust
  timekeep as it's just a simple OSS program.
 2018-01-26 15:47:21 +01:00
LuK1337 eee9f90a82 msm8976-common: sepolicy: Allow system_server to read qti_debugfs 2018-01-26 15:47:21 +01:00
LuK1337 762edfede3 msm8976-common: sepolicy: Use regular expression when labeling BT sysfs 
* Apparently gts28vewifi uses different number
  than 125 thus we should be using [0-9]+ regex.
 2018-01-26 15:47:21 +01:00
LuK1337 e13f6fe38a msm8976-common: sepolicy: Allow Bluetooth to read firmware files 
* Newer devices ship with bt_firmware partition but
  we aren't so lucky so we have to allow bluetooth
  to read firmware_file instead.
 2018-01-26 15:47:21 +01:00
LuK1337 54f1428686 msm8976-common: Label BT_QCA6174 sysfs files 2018-01-26 15:47:21 +01:00
Ethan Chen 2bf275f870 msm8976-common: sepolicy: Use noatsecure for everything 
* We rely on LD_SHIM_LIBS to provide missing symbols to
  some of our proprietary libraries.

Change-Id: I17095630043bbd5af4436cd5625a0fdc3480ed05
 2018-01-26 15:47:21 +01:00
LuK1337 25e027d85e msm8976-common: Initial SELinux updates 
* Drop domain_deprecated
* Use proper device block paths as
  symlinks are no longer working.
 2018-01-26 15:47:21 +01:00
Bruno Martins 6d58bd23b5 msm8976-common: Grant rmt_storage proper unix perms 
Do not grant DAC override permission which would allow this daemon
unix permissions to everything.

avc: denied { dac_override } for pid=2664 comm="rmt_storage" capability=1 scontext=u:r:rmt_storage:s0 tcontext=u:r:rmt_storage:s0 tclass=capability permissive=0

Add wakelock group to access:
/sys/power/wake_lock
-rw-rw----  1 radio  wakelock 4096 2017-06-28 00:37 wake_unlock

Change-Id: Ib02b4aedab479f5ad8aca3a2100b5c489397002a
 2017-07-04 18:40:56 +02:00
LuK1337 b2f7745ad4 msm8976-common: Update blobs from T813XXU2BQD1 
Change-Id: I3e3938773fddd721129a85552caec00f3ab8b17c
 2017-04-23 22:44:42 +02:00
LuK1337 64fd514d2c msm8976-common: Allow rmt_storage to use dac_override, net_raw capabilities 
Change-Id: Ie5e567c96278711ca5c84258ecb4602aa2fafcc3
 2017-02-15 21:06:05 +01:00
Dan Pasanen b5007f2fee msm8976-common: sepolicy: rfs_access needs net_raw 
* This is no longer in device/qcom/sepolicy

Change-Id: I18509dfe367e0328fd6372d0ad80114e3e4ed42d
 2017-02-15 19:16:19 +01:00
LuK1337 c2d9166d30 msm8976-common: Use /fota for uncrypt partition 
* Should have done that earlier.

Change-Id: Ib74f059066c65eb1d3905a9bbd29b553dae34b3e
 2017-02-08 17:23:47 +01:00
Arne Coucheron 7863596495 msm8976-common: Allow init to write in debugfs 
avc: denied { write } for name="tracing_on" dev="debugfs" ino=3203 scontext=u:r:init:s0 tcontext=u:object_r:debugfs:s0 tclass=file permissive=0

Change-Id: Ic4150d4a932e33124d760fce360c1ac042ed1387
 2017-02-03 18:12:26 +01:00
LuK1337 dc7fe24c4c msm8976-common: Allow system_server to `search` /efs 
* Allows acceleration sensor to look for calibration
  file even if it's not there :^)

Change-Id: I891a610b31e4450278da22d29ff69dff8e07372d
 2017-02-03 15:41:56 +01:00
LuK1337 6f9f705ab5 msm8976-common: Set proper fingerprintd policies 
Change-Id: I981bf82c93fd33e439d6ea6e305860ba841a5f91
 2017-01-26 22:18:44 +00:00
LuK1337 b47a1280b6 msm8976-common: Let netd access wifi_efs_file 
* Needed for setting proper MAC Address.

Change-Id: I2f7e5f0a69fe8995a4257fb915e488f96bff9888
 2017-01-25 21:02:53 +01:00
Luca Stefani 21581fccbd msm8976-common: sepolicy: Allow mediacodec to open venus firmware 2017-01-24 15:43:01 +01:00
Luca Stefani 07fbd607a0 msm8976-common: Allow fpd to save biometrics data 2017-01-24 11:33:26 +01:00
Luca Stefani e54be9f2df msm8976-common: Allow fpd to read the fp firmware 2017-01-24 11:21:25 +01:00
Luca Stefani ca6d34be97 msm8976-common: Allow fpd to search fp firmware 2017-01-24 11:18:27 +01:00
Luca Stefani f6599a6485 msm8976-common: Add FP selinux rules 2017-01-24 11:18:26 +01:00
Luca Stefani 891c848ea6 msm8976-common: Allow timekeep to search time_data_file dir 2017-01-24 11:03:35 +01:00
LuK1337 ffd034cd40 msm8976-common: Remove net_admin, net_raw groups from loc_launcher and pm-service 2017-01-23 22:42:57 +01:00
LuK1337 f175f6bc68 msm8976-common: Make it enforcing :3 2017-01-23 17:34:56 +01:00
LuK1337 1a1aee683d msm8976-common: Switch to TimeKeep 2017-01-23 13:40:35 +01:00