NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,107 Commits 2 Branches 0 Tags
Commit Graph

12 Commits

Author SHA1 Message Date
MY Chuang
945b222419 [ALPS04824757] mrdump: fix ioctl sepolicy 
1. mrdump_tool was blocked by sepolicy by ioctl actions.
2. add 4 more items
   - FS_IOC_GETFLAGS
   - FS_IOC_SETFLAGS
   - F2FS_IOC_GET_PIN_FILE
   - F2FS_IOC_SET_PIN_FILE

MTK-Commit-Id: 926484c7b945397752926c9a605e3e2cd4b7ae19

Change-Id: Idadd2f3a2525a3cff8bd8a7b91c8dc76f2482546
CR-Id: ALPS04824757
Feature: Memory RAM Dump (MRDUMP)
(cherry picked from commit 81c51be3cfd29de37b3d4a02072813a4b4f25fa6)
 2020-01-18 10:22:00 +08:00
Huaiming Li
2341e2e16c [ALPS04849010] move plat_private add_aedv contexts 
1. move plat_private aee_aedv contexts to non_plat/file_contexts
2. move plat_private aee_aedv contexts to r_non_plat/file_contexts

MTK-Commit-Id: 8b60b4707b32707c8ada4ebc5effdb47627d00df

Change-Id: Ie307e1938dd9afbf0f87b166f91397fd5431f9fb
CR-Id: ALPS04849010
Feature: Android Exception Engine(AEE)
 2020-01-18 10:21:46 +08:00
Huaiming Li
9e3351da5a [ALPS04758557] fix aee high risk rules 
1. fix some high risk rules

MTK-Commit-Id: b9c316d9b87f36e958f56273ffec3d6556639bdd

Change-Id: I093cccaa98e2a157da359ef2ebf43134f86ddad2
CR-Id: ALPS04758557
Feature: Android Exception Engine(AEE)
 2020-01-18 10:21:42 +08:00
Juju Sung
939dbae537 [ALPS04823486] selinux: export fingerprint property 
coredump tool needs to expose system and vendor image
fingerprint to know the relative version info.

MTK-Commit-Id: e8794c35f056dfeb20c0dff8b8aa506bd938fbd6

Change-Id: I009e10ccc8838b032d2192055fe1defcf81cebee
CR-Id: ALPS04823486
Feature: Android Exception Engine(AEE)
 2020-01-18 10:21:25 +08:00
Juju Sung
f98ad21ce5 [ALPS04767749] selinux: export fingerprint property 
coredump tool needs to expose system and vendor image
fingerprint to know the relative version info.

MTK-Commit-Id: bb82be1edc85daa3838c5917597d1c25e57bc434

Change-Id: Id29698199ac9081c56ad51f244b75732c9e18894
CR-Id: ALPS04767749
Feature: Android Exception Engine(AEE)
 2020-01-18 10:21:07 +08:00
Juju Sung
5173b15558 [ALPS04767749] Remove noatsecure from sepolicy 
This effectively disables LD_PRELOAD for init children and breaks
loading of libdirect-coredump.  This, however, is needed to avoid
layering violation and is the right thing to do long term.

MTK-Commit-Id: dafd04d1c1bbf0dae863774bfbd2c76cfecb2d98

Bug: 140789528
Test: Boot with boringssl_self_test32 enabled.
Change-Id: Id10c673694431dfae2fff401598e808a71e397ca
CR-Id: ALPS04767749
Feature: Android Exception Engine(AEE)
 2020-01-18 10:20:59 +08:00
Juju Sung
212d0f50ad [ALPS04793867] selinux: policy sync 
Android Q and R have different policy in basic.
We sync it from Q policy and fix R neverallow rule

MTK-Commit-Id: 67144e1e0efe28d30381b1f3a98728c1a87e396e

Change-Id: Id7c92fa79976951c86d1286262f684e8f747427b
CR-Id: ALPS04793867
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
 2020-01-18 10:20:50 +08:00
Vineet Goyal
b5f7f8fef6 [ALPS04793667] MSDC: Change block device path 
Change block device path so that access from user space
need not take care platform-dependent device address.

MTK-Commit-Id: 0c06dba2f545b1ecbf614f6fab0f8f9faef7199a

Change-Id: I68746d22e61259a9bcdbf4124446b9c81077edbe
Signed-off-by: Vineet Goyal <vineet.goyal@mediatek.com>
CR-Id: ALPS04793667
Feature: eMMC Boot Up
 2020-01-18 10:20:45 +08:00
Juju Sung
1dbf2b6dff [ALPS04387792] BGService: add sepolicy permission 
[Detail]
1. add BGService sepolicy permission

MTK-Commit-Id: 136f9e6df88b8e10652a3393405737b20e986f51

Change-Id: I62a077fbadd17a865c21e8c1551b2202d10bc6ce
CR-Id: ALPS04387792
Feature: [Android Default] Camera Application Basic Functions
 2020-01-18 10:20:09 +08:00
otis.huang
ae6fbad5e9 [ALPS04387792] BGService: add sepolicy permission 
[Detail]
1. add BGService sepolicy permission

MTK-Commit-Id: f5832af535feb84ff9f94ae25eb02fc6f5959762

Change-Id: I22a1e8d6e17a2f455771adf677d2ce8cb32e6550
CR-Id: ALPS04387792
Feature: [Android Default] Camera Application Basic Functions
 2020-01-18 10:20:04 +08:00
Guobao Wang
0b9d1a7568 [ALPS04763239] Remove the high risk sepolicy sysfs_vcorefs_pwrctrl 
Remove the high risk sepolicy sysfs_vcorefs_pwrctrl because its no
longer in use.

MTK-Commit-Id: 7aec1b3e31558366c3d3f098eb7c9eac02398a2a

Change-Id: I2e0dcd99be464f01435f8e96ea6dd5fa6ca12716
CR-Id: ALPS04763239
Feature: SIM
 2020-01-18 10:19:51 +08:00
Juju Sung
61d7044c46 [ALPS04767749] Selinux: Add new TE path 
[Detail]
New sepolicy path declared and also support
legacy android.

MTK-Commit-Id: 8982268bbef8f852c153428f1a5f83849953c7c2

Change-Id: Ic10f297a312ff2e89e44a0aa323ffa11bc78ff6e
CR-Id: ALPS04767749
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
 2020-01-18 10:19:48 +08:00