[ALPS03992559] EM HIDL - selinux

Add selinux support for HIDL MTK-Commit-Id: f58b6fd1c6c053780475ad44ac648f6231af0d94 Change-Id: I77a9bdffbcb8b837e78055ef8bfb9b9d328232b2 CR-Id: ALPS03992559 Feature: Engineering Mode
2020-01-18 10:04:08 +08:00 · 2020-01-18 10:04:08 +08:00 · 12c8c8e1f4
commit 12c8c8e1f4
parent 7afa1c5c3f
9 changed files with 221 additions and 10 deletions
--- a/non_plat/attributes
+++ b/non_plat/attributes
@ -57,3 +57,10 @@ attribute mtk_hal_fm_server;
 attribute mtk_hal_log;
 attribute mtk_hal_log_client;
 attribute mtk_hal_log_server;
+
+# Date: 2018/06/26
+# em hidl
+attribute mtk_hal_em;
+attribute mtk_hal_em_client;
+attribute mtk_hal_em_server;
+
--- a/non_plat/em_hidl.te
+++ b/non_plat/em_hidl.te
@ -0,0 +1,94 @@
+# ==============================================
+# Policy File of /vendor/bin/em_hidi Executable File
+# ==============================================
+type em_hidl, domain;
+type em_hidl_exec, exec_type, file_type, vendor_file_type;
+
+# Date :  2018/06/28
+init_daemon_domain(em_hidl)
+
+# Date :  2018/06/28
+# Purpose: EM_HILD
+hal_server_domain(em_hidl, mtk_hal_em)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set ims operator
+set_prop(em_hidl, mtk_operator_id_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_simswitch_emmode_prop
+set_prop(em_hidl, mtk_simswitch_emmode_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_dsbp_support_prop
+set_prop(em_hidl, mtk_dsbp_support_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_imstestmode_prop
+set_prop(em_hidl, mtk_imstestmode_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_smsformat_prop
+set_prop(em_hidl, mtk_smsformat_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_gprs_prefer_prop
+set_prop(em_hidl, mtk_gprs_prefer_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_testsim_cardtype_prop
+set_prop(em_hidl, mtk_testsim_cardtype_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should set mtk_ct_ir_engmode_prop
+set_prop(em_hidl, mtk_ct_ir_engmode_prop)
+
+# Date :  2018/06/28
+# Operation : EM DEBUG
+# Purpose: EM should mtk_disable_c2k_cap_prop
+set_prop(em_hidl, mtk_disable_c2k_cap_prop)
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should mtk_debug_md_reset_prop
+set_prop(em_hidl, mtk_debug_md_reset_prop)
+
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should mtk_connsys_coredump_mode_prop
+set_prop(em_hidl, mtk_connsys_coredump_mode_prop)
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should video log mtk_omx_log_prop
+set_prop(em_hidl, mtk_omx_log_prop)
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should video log mtk_vdec_log_prop
+set_prop(em_hidl, mtk_vdec_log_prop)
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should video log mtk_vdectlc_log_prop
+set_prop(em_hidl, mtk_vdectlc_log_prop)
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should video log mtk_venc_h264_showlog_prop
+set_prop(em_hidl, mtk_venc_h264_showlog_prop)
+
+# Date :  2018/06/29
+# Operation : EM DEBUG
+# Purpose: EM should video log mtk_modem_warning_prop
+set_prop(em_hidl, mtk_modem_warning_prop)
+
--- a/non_plat/hwservice.te
+++ b/non_plat/hwservice.te
@ -38,3 +38,7 @@ type mtk_hal_fm_hwservice, hwservice_manager_type;
 # Date: 2018/03/23
 # log hidl
 type mtk_hal_log_hwservice, hwservice_manager_type;
+
+# Date: 2018/06/26
+# em hidl
+type mtk_hal_em_hwservice, hwservice_manager_type;
--- a/non_plat/hwservice_contexts
+++ b/non_plat/hwservice_contexts
@ -44,3 +44,7 @@ vendor.mediatek.hardware.fm::IFmRadio u:object_r:mtk_hal_fm_hwservice:s0
 # Date: 2018/03/23
 # log hidl
 vendor.mediatek.hardware.log::ILog u:object_r:mtk_hal_log_hwservice:s0
+
+# Date: 2018/06/26
+# em hidl
+vendor.mediatek.hardware.engineermode::IEmd u:object_r:mtk_hal_em_hwservice:s0
--- a/non_plat/mtk_hal_em.te
+++ b/non_plat/mtk_hal_em.te
@ -0,0 +1,6 @@
+# HwBinder IPC from client to server, and callbacks
+binder_call(mtk_hal_em_client, mtk_hal_em_server)
+binder_call(mtk_hal_em_server, mtk_hal_em_client)
+
+add_hwservice(mtk_hal_em_server, mtk_hal_em_hwservice)
+allow mtk_hal_em_client mtk_hal_em_hwservice:hwservice_manager find;
--- a/non_plat/property.te
+++ b/non_plat/property.te
@ -128,6 +128,54 @@ type mtk_em_auto_answer_prop, property_type, extended_core_property_type;
 #============= allow em set protocol ===============
 type mtk_em_net_auto_tethering_prop, property_type, extended_core_property_type;

+#=============allow em set property=============
+type mtk_operator_id_prop, property_type, mtk_core_property_type;
+
+#=============allow em set testsim.cardtype property===========
+type mtk_simswitch_emmode_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_dsbp_support_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_imstestmode_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_smsformat_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_gprs_prefer_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_testsim_cardtype_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_ct_ir_engmode_prop, property_type, mtk_core_property_type;
+
+#=============allow em set property=============
+type mtk_disable_c2k_cap_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set modem reset delay property================
+type mtk_debug_md_reset_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set wcn core dump mode property================
+type mtk_connsys_coredump_mode_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set video log omx.* property================
+type mtk_omx_log_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set vdec log property================
+type mtk_vdec_log_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set vdectlc log property================
+type mtk_vdectlc_log_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set venc h264 showlog property================
+type mtk_venc_h264_showlog_prop, property_type, mtk_core_property_type;
+
+#=============allow em to set modem warning_prop property================
+type mtk_modem_warning_prop, property_type, mtk_core_property_type;
+
 #=============allow meta_tst to stop specific service ===============
 type ctl_mobile_log_d_prop, property_type;
 type ctl_mnld_prop, property_type;
@ -164,8 +212,7 @@ type vendor_radio_prop, property_type, mtk_core_property_type;
 #=============allow bluetooth==============
 type vendor_bluetooth_prop, property_type, extended_core_property_type;

-#=============allow EM to set modem reset delay property================
-type mtk_debug_md_reset_prop, property_type, mtk_core_property_type;
+

 #=============em camera property==============
 type vendor_debug_prop, property_type, mtk_core_property_type;
--- a/non_plat/property_contexts
+++ b/non_plat/property_contexts
@ -118,12 +118,61 @@ vendor.client.      u:object_r:mtk_em_prop:s0
 vendor.debug.camera.p2plug.log u:object_r:mediatek_prop:s0
 vendor.client.em.appmode u:object_r:mediatek_prop:s0

-#=============allow em set protocol================
-persist.vendor.auto_answer   u:object_r:mtk_em_auto_answer_prop:s0
+#=============allow em set auto_answer protocol================
+persist.vendor.auto_answer  u:object_r:mtk_em_auto_answer_prop:s0

-#=============allow em set protocol================
+#=============allow em set tethering protocol================
 persist.vendor.net.auto.tethering   u:object_r:mtk_em_net_auto_tethering_prop:s0

+#=============allow em set ims operator property===========
+vendor.ril.volte.mal.pctid u:object_r:mtk_operator_id_prop:s0
+
+#=============allow em set simswitch property===========
+persist.vendor.radio.simswitch.emmode u:object_r:mtk_simswitch_emmode_prop:s0
+
+#=============allow em set mtk_dsbp_support property===========
+persist.vendor.radio.mtk_dsbp_support u:object_r:mtk_dsbp_support_prop:s0
+
+#=============allow em set imstestmode property===========
+persist.vendor.radio.imstestmode u:object_r:mtk_imstestmode_prop:s0
+
+#=============allow em set smsformat property===========
+persist.vendor.radio.smsformat u:object_r:mtk_smsformat_prop:s0
+
+#=============allow em set gprs.prefer property===========
+persist.vendor.radio.gprs.prefer u:object_r:mtk_gprs_prefer_prop:s0
+
+#=============allow em set testsim.cardtype property===========
+persist.vendor.radio.testsim.cardtype u:object_r:mtk_testsim_cardtype_prop:s0
+
+#=============allow em set ct.ir.engmode property===========
+persist.vendor.radio.ct.ir.engmode u:object_r:mtk_ct_ir_engmode_prop:s0
+
+#=============allow em set disable_c2k_cap property===========
+persist.vendor.radio.disable_c2k_cap u:object_r:mtk_disable_c2k_cap_prop:s0
+
+#=============allow em to set modem reset delay property================
+vendor.mediatek.debug.md.reset.wait u:object_r:mtk_debug_md_reset_prop:s0
+
+#=============allow em to set wcn core dump mode property================
+persist.vendor.connsys.coredump.mode u:object_r:mtk_connsys_coredump_mode_prop:s0
+
+#=============allow em to set video log omx.* property================
+vendor.mtk.omx. u:object_r:mtk_omx_log_prop:s0
+
+#=============allow em to set vdec log property================
+vendor.mtk.vdec.log u:object_r:mtk_vdec_log_prop:s0
+
+#=============allow em to set vdectlc logproperty================
+vendor.mtk.vdectlc.log u:object_r:mtk_vdectlc_log_prop:s0
+
+#=============allow em to set venc h264 showlog property================
+vendor.mtk.venc.h264.showlog u:object_r:mtk_venc_h264_showlog_prop:s0
+
+#=============allow em to set modem warning property================
+persist.vendor.radio.modem.warning u:object_r:mtk_modem_warning_prop:s0
+
+
 #=============allow system server to set meta_connecttype property  ==============
 persist.vendor.meta.connecttype u:object_r:meta_connecttype_prop:s0

@ -160,14 +209,9 @@ persist.vendor.radio. u:object_r:vendor_radio_prop:s0
 #=============allow bluetooth==============
 vendor.bthcisnoop u:object_r:vendor_bluetooth_prop:s0

-#=============allow EM to set modem reset delay property================
-vendor.mediatek.debug.md.reset.wait u:object_r:mtk_debug_md_reset_prop:s0
-
 #=============em camera property==============
 vendor.debug. u:object_r:vendor_debug_prop:s0

-
-
 #=============allow ct volte==============
 persist.vendor.mtk_ct_volte_support u:object_r:mtk_ct_volte_prop:s0

--- a/non_plat/radio.te
+++ b/non_plat/radio.te
@ -185,3 +185,7 @@ get_prop(radio, mtk_aal_prop)
 # Purpose: Allow EM detect Audio headset status
 allow radio sysfs_headset:file { read open };

+# Date : 2018/06/26
+# Operation : IT
+# Purpose : Allow to use HAL em
+hal_client_domain(radio, mtk_hal_em)
--- a/plat_private/file_contexts
+++ b/plat_private/file_contexts
@ -18,6 +18,7 @@
 /system/bin/cmddumper u:object_r:cmddumper_exec:s0
 /system/bin/thermalindicator u:object_r:thermalindicator_exec:s0
 /system/bin/em_svr u:object_r:em_svr_exec:s0
+/vendor/bin/em_hidl u:object_r:em_hidl_exec:s0
 /system/bin/aee_aed u:object_r:aee_aed_exec:s0
 /system/bin/aee_aed64 u:object_r:aee_aed_exec:s0
 /system/bin/aee_dumpstate u:object_r:dumpstate_exec:s0