LuK1337
eee9f90a82
msm8976-common: sepolicy: Allow system_server to read qti_debugfs
2018-01-26 15:47:21 +01:00
LuK1337
762edfede3
msm8976-common: sepolicy: Use regular expression when labeling BT sysfs
...
* Apparently gts28vewifi uses different number
than 125 thus we should be using [0-9]+ regex.
2018-01-26 15:47:21 +01:00
LuK1337
e13f6fe38a
msm8976-common: sepolicy: Allow Bluetooth to read firmware files
...
* Newer devices ship with bt_firmware partition but
we aren't so lucky so we have to allow bluetooth
to read firmware_file instead.
2018-01-26 15:47:21 +01:00
LuK1337
54f1428686
msm8976-common: Label BT_QCA6174 sysfs files
2018-01-26 15:47:21 +01:00
Ethan Chen
2bf275f870
msm8976-common: sepolicy: Use noatsecure for everything
...
* We rely on LD_SHIM_LIBS to provide missing symbols to
some of our proprietary libraries.
Change-Id: I17095630043bbd5af4436cd5625a0fdc3480ed05
2018-01-26 15:47:21 +01:00
LuK1337
25e027d85e
msm8976-common: Initial SELinux updates
...
* Drop domain_deprecated
* Use proper device block paths as
symlinks are no longer working.
2018-01-26 15:47:21 +01:00
Bruno Martins
6d58bd23b5
msm8976-common: Grant rmt_storage proper unix perms
...
Do not grant DAC override permission which would allow this daemon
unix permissions to everything.
avc: denied { dac_override } for pid=2664 comm="rmt_storage" capability=1 scontext=u:r:rmt_storage:s0 tcontext=u:r:rmt_storage:s0 tclass=capability permissive=0
Add wakelock group to access:
/sys/power/wake_lock
-rw-rw---- 1 radio wakelock 4096 2017-06-28 00:37 wake_unlock
Change-Id: Ib02b4aedab479f5ad8aca3a2100b5c489397002a
2017-07-04 18:40:56 +02:00
LuK1337
b2f7745ad4
msm8976-common: Update blobs from T813XXU2BQD1
...
Change-Id: I3e3938773fddd721129a85552caec00f3ab8b17c
2017-04-23 22:44:42 +02:00
LuK1337
64fd514d2c
msm8976-common: Allow rmt_storage to use dac_override, net_raw capabilities
...
Change-Id: Ie5e567c96278711ca5c84258ecb4602aa2fafcc3
2017-02-15 21:06:05 +01:00
Dan Pasanen
b5007f2fee
msm8976-common: sepolicy: rfs_access needs net_raw
...
* This is no longer in device/qcom/sepolicy
Change-Id: I18509dfe367e0328fd6372d0ad80114e3e4ed42d
2017-02-15 19:16:19 +01:00
LuK1337
c2d9166d30
msm8976-common: Use /fota for uncrypt partition
...
* Should have done that earlier.
Change-Id: Ib74f059066c65eb1d3905a9bbd29b553dae34b3e
2017-02-08 17:23:47 +01:00
Arne Coucheron
7863596495
msm8976-common: Allow init to write in debugfs
...
avc: denied { write } for name="tracing_on" dev="debugfs" ino=3203 scontext=u:r:init:s0 tcontext=u:object_r:debugfs:s0 tclass=file permissive=0
Change-Id: Ic4150d4a932e33124d760fce360c1ac042ed1387
2017-02-03 18:12:26 +01:00
LuK1337
dc7fe24c4c
msm8976-common: Allow system_server to search
/efs
...
* Allows acceleration sensor to look for calibration
file even if it's not there :^)
Change-Id: I891a610b31e4450278da22d29ff69dff8e07372d
2017-02-03 15:41:56 +01:00
LuK1337
6f9f705ab5
msm8976-common: Set proper fingerprintd policies
...
Change-Id: I981bf82c93fd33e439d6ea6e305860ba841a5f91
2017-01-26 22:18:44 +00:00
LuK1337
b47a1280b6
msm8976-common: Let netd access wifi_efs_file
...
* Needed for setting proper MAC Address.
Change-Id: I2f7e5f0a69fe8995a4257fb915e488f96bff9888
2017-01-25 21:02:53 +01:00
Luca Stefani
21581fccbd
msm8976-common: sepolicy: Allow mediacodec to open venus firmware
2017-01-24 15:43:01 +01:00
Luca Stefani
07fbd607a0
msm8976-common: Allow fpd to save biometrics data
2017-01-24 11:33:26 +01:00
Luca Stefani
e54be9f2df
msm8976-common: Allow fpd to read the fp firmware
2017-01-24 11:21:25 +01:00
Luca Stefani
ca6d34be97
msm8976-common: Allow fpd to search fp firmware
2017-01-24 11:18:27 +01:00
Luca Stefani
f6599a6485
msm8976-common: Add FP selinux rules
2017-01-24 11:18:26 +01:00
Luca Stefani
891c848ea6
msm8976-common: Allow timekeep to search time_data_file dir
2017-01-24 11:03:35 +01:00
LuK1337
ffd034cd40
msm8976-common: Remove net_admin, net_raw groups from loc_launcher and pm-service
2017-01-23 22:42:57 +01:00
LuK1337
f175f6bc68
msm8976-common: Make it enforcing :3
2017-01-23 17:34:56 +01:00
LuK1337
1a1aee683d
msm8976-common: Switch to TimeKeep
2017-01-23 13:40:35 +01:00