5 Commits

Author	SHA1	Message	Date
Francescodario Cuzzocrea	fec1e0d49c	msm8974-common: sepolicy: allow rild read perms on proc_qtaguid_stat ... Change-Id: I7f7c872603d162849a4c1b07ec6b04a35f15ddcc	2020-12-30 07:58:37 -07:00
Kevin F. Haggerty	393fdef68c	msm8974-common: sepolicy: Allow rild to set various radio props ... * avc: denied { set } for property=persist.ril.radiocapa.tdscdma pid=532 uid=1001 gid=1001 scontext=u:r:rild:s0 tcontext=u:object_r:default_prop:s0 tclass=property_service permissive=1 * avc: denied { set } for property=persist.ril.modem.board pid=572 uid=1001 gid=1001 scontext=u:r:rild:s0 tcontext=u:object_r:default_prop:s0 tclass=property_service permissive=1 * avc: denied { set } for property=persist.ril.ims.eutranParam pid=2745 uid=1001 gid=1001 scontext=u:r:rild:s0 tcontext=u:object_r:default_prop:s0 tclass=property_service permissive=1 Change-Id: Ib64be5c213456f80f403c645655fbc502a50832d	2020-12-30 07:58:17 -07:00
Kevin F. Haggerty	f3cd79f3ae	msm8974-common: sepolicy: Resurrect alarm_device ... * Both our ril_daemon, via libsec-ril*.so, and our time_daemon need access to this device node Change-Id: Ib787f45596bb6aa606bab102a5bd1cb93eb645a4	2020-05-26 15:09:19 -06:00
Kevin F. Haggerty	071111d64d	msm8974-common: sepolicy: Label sysfs_sec_* types, resolve denials ... * Rename sysfs_sec type to sysfs_sec_key * Add additional sysfs_sec_* types as appropriate * avc: denied { read } for name="temp_adc" dev="sysfs" ino=10538 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_sec_thermistor:s0 tclass=file permissive=1 * avc: denied { open } for name="temp_adc" dev="sysfs" ino=10538 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_sec_thermistor:s0 tclass=file permissive=1 * avc: denied { write } for name="ir_send" dev="sysfs" ino=21339 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_sec_ir:s0 tclass=file permissive=1 * avc: denied { write } for name="led_blink" dev="sysfs" ino=25722 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_sec_led:s0 tclass=file permissive=1 * avc: denied { write } for name="brightness" dev="sysfs" ino=23467 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_sec_touchkey:s0 tclass=file permissive=1 * avc: denied { setattr } for name="ir_send" dev="sysfs" ino=21339 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_ir:s0 tclass=file permissive=1 * avc: denied { setattr } for name="hall_irq_ctrl" dev="sysfs" ino=29565 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_key:s0 tclass=file permissive=1 * avc: denied { setattr } for name="epen_firm_update" dev="sysfs" ino=23585 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_epen:s0 tclass=file permissive=1 * avc: denied { setattr } for name="cmd" dev="sysfs" ino=23756 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_tsp:s0 tclass=file permissive=1 * avc: denied { write } for name="wakeup_keys" dev="sysfs" ino=29568 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_key:s0 tclass=file permissive=1 * avc: denied { open } for name="wakeup_keys" dev="sysfs" ino=29568 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_key:s0 tclass=file permissive=1 * avc: denied { read } for name="input" dev="sysfs" ino=24012 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_tsp:s0 tclass=lnk_file permissive=0 * avc: denied { setattr } for name="waketime" dev="sysfs" ino=29035 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_bamdmux:s0 tclass=file permissive=0 * avc: denied { setattr } for name="led_r" dev="sysfs" ino=25719 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_led:s0 tclass=file permissive=0 * avc: denied { setattr } for name="usb_sel" dev="sysfs" ino=28162 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_switch:s0 tclass=file permissive=0 * avc: denied { setattr } for name="brightness" dev="sysfs" ino=23468 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_touchkey:s0 tclass=file permissive=0 * avc: denied { setattr } for name="temperature" dev="sysfs" ino=10538 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_thermistor:s0 tclass=file permissive=0 * avc: denied { setattr } for name="barcode_send" dev="sysfs" ino=19231 scontext=u:r:init:s0 tcontext=u:object_r:sysfs_sec_barcode_emul:s0 tclass=file permissive=0 Change-Id: I66b6d2aab875a2706f2730be9755e8d9805ffb6e	2018-11-27 08:12:28 -07:00
Kevin F. Haggerty	68b75f9105	msm8974-common: sepolicy: Import common sepolicy from klte-common ... * The bulk of the device family policy was common and applicable to all Samsung msm8974-devices. Move that common stuff here to ease maintenance. Change-Id: I86516adfb1b9c55a6959a7faf4ee424a4b3385c8	2018-02-03 15:07:03 -07:00