874 Commits

Author SHA1 Message Date
Hua Fu
899c01d964 [ALPS04088869] GPS: Add selinux allow for mnld to access gpsdl devices
Allow mnld to access MT6885 new GPS device drivers, which are:
/dev/gpsdl0 and /dev/gpsdl1.

MTK-Commit-Id: 11b8302cd93d085be0e56f7e7645a1e6fd7b5980

Change-Id: I49f18a7ff01c6c4c700f9069920994dd5e62a624
Signed-off-by: Hua Fu <hua.fu@mediatek.com>
CR-Id: ALPS04088869
Feature: Location Chipset Capability
2020-01-18 10:16:44 +08:00
Yogesh Tundele
94de77a5fe Merge "[ALPS04685340] Recovery: Add SELinux Permission" into alps-trunk-q0.basic
Change-Id: I3d076b625fe6b39dd86d4c2358890bc829fdb57f
MTK-Commit-Id: e7e98db12833b1425593d60035bce6593cc7c6e2
2020-01-18 10:16:44 +08:00
Yogesh Tundele
5f63a6caa8 [ALPS04685340] Recovery: Add SELinux Permission
[Detail]
Uncrypt service need permission to write ota package

MTK-Commit-Id: 0fa210d0c4e4ce5eae607fa2d53fb10a59a49628

Change-Id: If8127d2056278932ecf947541cfa24b29be6bb11
CR-Id: ALPS04685340
Feature: [Module]Settings
Signed-off-by: Yogesh Tundele <yogesh.tundele@mediatek.com>
2020-01-18 10:16:38 +08:00
Stanley Chu
328d60ea9c [ALPS04682157] aee: ufs: Add proc_ufs_debug
Add proc_ufs_debug SEPolicy definition.

MTK-Commit-Id: cbcfb406d1dfdb0d25205da21a1e99cb166659e8

Change-Id: Iee4bfba2116a7f005f8b9b8d831d0e10523b61d1
CR-Id: ALPS04682157
Feature: Android Exception Engine(AEE)
2020-01-18 10:16:37 +08:00
Stanley Chu
1a276c5460 [ALPS04682157] aee: ufs: Enable write permission for ufs_debug
Enable write permission for /proc/ufs_debug to try to catch
precise UFS command history in erroneous scenes by:

- Stopping UFS command history immediately just after error
  (e.g., NE, JE ...etc.) happens.
- Re-starting UFS command history after UFS command history
  is dumped.

MTK-Commit-Id: 59f4a6c71850d7131cf6312e802124fe68a830c6

Change-Id: I738eff0040210b4a833f15af526c68282f697d5b
CR-Id: ALPS04682157
Feature: Android Exception Engine(AEE)
2020-01-18 10:16:36 +08:00
Harvey Liu
81bde14096 Merge "[ALPS04682095] Factory Mode: fix SElinux policy" into alps-trunk-q0.basic
Change-Id: I7ccd9cbbb58599b6ac3728d39ba1cae4fc52f205
MTK-Commit-Id: 9e50666bedfd55e9d06dfb8ca3c7316302ef3fc3
2020-01-18 10:16:35 +08:00
Jenny Hsu
5208b37972 [ALPS04682095] Factory Mode: fix SElinux policy
[Detail] Add whitelist for SELinux avc denied problem

MTK-Commit-Id: 09661f9080a79ab4793477bb1d2f58ca82c8c517

Change-Id: Ibdacde2da8c49e5f7d7744c2c5781b0bcf03cccc
CR-Id: ALPS04682095
Feature: Factory Mode
2020-01-18 10:16:33 +08:00
Sharon Feng
ffc22cbb24 Merge "[ALPS04428522] Add selinux policy for svp" into alps-trunk-q0.basic
Change-Id: I50b42e9a60dc1cfefa309a6c50e76dc337ba8853
MTK-Commit-Id: 6f772916ed73393a7854d683cb69ad7efe645be2
2020-01-18 10:16:32 +08:00
sharon.feng
8a77128e9d [ALPS04428522] Add selinux policy for svp
[Detail] For android Q, we need to add more policy for secure video playback

MTK-Commit-Id: 49b4ab8e0047f4a5002c82af075c77e8bc4e790f

Change-Id: Ib81885e40b14416b57e0776c56cb85591509501a
CR-Id: ALPS04428522
Feature: Trustonic TEE (Trusted Execution Environment)
2020-01-18 10:16:31 +08:00
Johnny Yao
4a346a24a8 [ALPS04667511] WMT: add map policy for stp_dump, stpwmt_device
add map policy for stp_dump, stpwmt_device

MTK-Commit-Id: f49e856a8cbe3813d9e177345ce18ae1b61e89b7

Change-Id: Ib76f0cb54e7dc363da194686aec4724b6b4c1fad
Signed-off-by: Johnny Yao <johnny.yao@mediatek.com>
CR-Id: ALPS04667511
Feature: [Module]WMT Driver
2020-01-18 10:16:29 +08:00
Chinwen Chang
b26257b43e [ALPS04682095] revert "[ALPS04455690] Whitelist some lmkd properties that go into /vendor/build.prop"
This reverts commit bc8b76b56605d264af1727cd234a5406da372744

MTK-Commit-Id: 70d80baace23b335bad1fe838af8662e4145feaa

Change-Id: Idfe9cf773b3434596d97e0c0412468635ef624c3
CR-Id: ALPS04682095
Feature: Memory Optimization
2020-01-18 10:16:29 +08:00
Shanshan Guo
ac04c06d44 [ALPS04661377] SEPolicy:workaround for google dumpstate avc error
[Detail]
In xTS, testNoBugreportDenials will check if there are any
avc denied log of dumpstate.
https://android-review.googlesource.com/c/platform/cts/+/667966

[Solution]
add dumpstate allow rules as workaround for google
dumpstate avc error.

MTK-Commit-Id: 98f2dcd0a8011ce5892a25bf40e3e94efe87e302

Change-Id: I12d8d197a815791be942336d6c951e38a3278d2c
CR-Id: ALPS04661377
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 10:16:29 +08:00
Jianping Jiang
b3838f31bb Merge "[ALPS04674290] Correct mnld_device type" into alps-trunk-q0.basic
Change-Id: I16857bef7e386fefdb04f0b3d6798f49a94213ec
MTK-Commit-Id: 46c321079fa7510de79fc8b3b0d2096c85fa4fd9
2020-01-18 10:16:28 +08:00
Jianping Jiang
109462e1f2 [ALPS04674290] Correct mnld_device type
1. Remove mnld_device from lbs_dbg.te;
2. move mnld_device type to non_plat folder

MTK-Commit-Id: f575807c7ac6d6a30595479ae03339b5765ff884

Change-Id: I8ba23283a103f52c045ae6c69ec7fc4eca06df84
CR-Id: ALPS04674290
Feature: Location Chipset Capability
2020-01-18 10:16:26 +08:00
Guoyi Qu
c05f509f1b [ALPS04266403] add permission
Add permission for access data/debuglogger.

MTK-Commit-Id: 5aee880b2f482110007a55d23c65e5d86b65cf72

Change-Id: I55faf7bcd66beef34d916b594d3ad8cb62836e9d
CR-Id: ALPS04266403
Feature: Connsys Log Tool
2020-01-18 10:16:25 +08:00
lena wang
2ddeac52a9 Merge "[ALPS04607956] SIM:Add IMSI to sensitive property" into alps-trunk-q0.basic
Change-Id: Ib07607fc7274a5eb770eb155591fe59ee9421b18
MTK-Commit-Id: a23a5e67e573d5cf2e30741429d364fe2681534f
2020-01-18 10:16:24 +08:00
lena wang
271faac986 [ALPS04607956] SIM:Add IMSI to sensitive property
IMSI belongs to sensitive information and is not allowed to print.
Add IMSI property to sensitive group and it is not printed in
mtklogger property files.

MTK-Commit-Id: 9c0bde9784ce5f9f4a88ee6827faf864c248682a

Change-Id: If3721c66fc69f86424ed98193aecd600019071f8
CR-Id: ALPS04607956
Feature: SIM
2020-01-18 10:16:21 +08:00
Ping-Hsun Wu
746bea8548 Merge "[ALPS04672388] Change selinux permission for MDP user" into alps-trunk-q0.basic
Change-Id: I399e0d0423e8ab393740f8546465f5118c8fac3e
MTK-Commit-Id: 919592752ef6843078dc651cb0596f81864b92ec
2020-01-18 10:16:20 +08:00
Mike Hsieh
dc6c9adc15 [ALPS04672388] Change selinux permission for MDP user
Change selinux permission for MDP user on /dev/mdp_sync

MTK-Commit-Id: a9c03563cf5e96815399788228dc62d18d88026e

CR-Id: ALPS04672388
Change-Id: I3622da7b8ba4151f9cf79e9d4d9c8f73109ef684
Feature: [Module]MDP Driver
2020-01-18 10:16:18 +08:00
Chien-Wei Hsu
d569ce167d Merge "[ALPS04286398] adsp: add adsp permission" into alps-trunk-q0.basic
Change-Id: I1ded0256d0891a753353d654600860b449c72971
MTK-Commit-Id: 628f3ced43fdc2466e3457ea70158c169c6faf77
2020-01-18 10:16:16 +08:00
chien-wei hsu
723628ecbd [ALPS04286398] adsp: add adsp permission
[detail]
add device adsp permission

MTK-Commit-Id: e4e95de61164b584c97b949d2aa57ed17dd3120e

Change-Id: I691cb90e40034357d6a320bb0749db497b76a9e7
CR-Id: ALPS04286398
Feature: [Module]Audio OpenDSP
2020-01-18 10:16:14 +08:00
Cosmo Sung
c8a28bd034 Merge "[ALPS04649355] TC1 Q migration" into alps-trunk-q0.basic
Change-Id: If0ee6963fc28d65cefe46ef4a47f8d5c8beb49e6
MTK-Commit-Id: 1fa774aa71061e9ad6d7e765a920b135cc6ceeda
2020-01-18 10:16:11 +08:00
Cosmo Sung
bd0e54fbb5 [ALPS04649355] TC1 Q migration
Add permission for IMtkRadioEx.

MTK-Commit-Id: 88ee7b7349158b7b17705cc54941f989bbe58e2f

Change-Id: I19d4494f707966265c364ae640f4f5455662708c
CR-Id: ALPS04649355
Feature: DSDS (Dual SIM Dual Standby) Framework-Common Framework(RIL)
2020-01-18 10:16:10 +08:00
lena wang
f288849b4b Merge "[ALPS04660540] SIM:Allow factory to access AOSP property" into alps-trunk-q0.basic
Change-Id: I511f4e7784a59cf80981dbd267d6da432116e2b5
MTK-Commit-Id: cd4bbdfa715f8434c047396b33f655bedc2f1449
2020-01-18 10:16:08 +08:00
Jibin Zhang
bf2e48d678 [ALPS04660540] SIM:Allow factory to access AOSP property
Add SELINUX permission to allow factory to access AOSP property

MTK-Commit-Id: c97b48cc3d6e3975d417fad03a5f0db5d0d84f99

Change-Id: Ib01f0792bfb4110aff7cba60d0ee7ddf6de6b391
CR-Id: ALPS04660540
Feature: SIM
2020-01-18 10:16:06 +08:00
Larry Liang
94b231fbb3 Merge "[ALPS04642542] add allow rule for reading tracing_on" into alps-trunk-q0.basic
Change-Id: I328ef6c3839dda06c8c7b5caec7d4ffcba656459
MTK-Commit-Id: 937bf8e174a07adcaf7a43ef9c50670afbfd7100
2020-01-18 10:16:05 +08:00
Huaiming Li
cbb2ca1665 [ALPS04642542] add allow rule for reading tracing_on
ensure aee_dumpstate can read tracing_on value

MTK-Commit-Id: a97d988f87616ea966acdfc090f665237098fb22

Change-Id: I04b844de30965f943b7d3d2be1c805c3158dbf13
CR-Id: ALPS04642542
Feature: Android Exception Engine(AEE)
2020-01-18 10:16:04 +08:00
Deepti Vashist
47867cc607 Merge "[ALPS04669482] Added SELinux policy for mediaswcodec" into alps-trunk-q0.basic
Change-Id: I2bc864b4cd21989e9113b9b8e61ba9f04bf9f8e4
MTK-Commit-Id: 276993cc3d265edbcc149e4522b4f10c0ac1378e
2020-01-18 10:16:03 +08:00
pankaj jangir
31c487c298 [ALPS04669482] Added SELinux policy for mediaswcodec
Add file & dir permission on gpu, proc_ged, and debugfs_ion

MTK-Commit-Id: b27f71d9a9c557042c7844b034d26c5a58895204

Change-Id: Ie0dce4d5fba5cfdce1b76cdd8706d81f010a3771
CR-Id: ALPS04669482
Feature: Video Player
2020-01-18 10:16:01 +08:00
stephen.wong
107835458d Merge "[ALPS04667747] selinux config" into alps-trunk-q0.basic
Change-Id: I3e79cc6f3c9232174facc3af80d73f41cef1894a
MTK-Commit-Id: d9364175022bb4793eb1c32089f7f6adf5b08b9b
2020-01-18 10:15:59 +08:00
stephen.wong
c9ac72bb74 [ALPS04667747] selinux config
add selinx config for thermal property

MTK-Commit-Id: 3399f43cfdc0e8ede5cd28b79737c35525cb50ee

Change-Id: Ic0cbbf250baea60347602e284cb6961cd453d721
CR-Id: ALPS04667747
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 10:15:58 +08:00
Wei Fu
c902c2bb21 [ALPS04524960] Add SELinux policy for setting audio path
Add SELinux policy for setting audio path.

MTK-Commit-Id: a8b9bc5711b5aa66d292afd5ddff73c2233ce5c8

Change-Id: Iaeb63f082755b30f167eebc8094581823bc05826
CR-Id: ALPS04524960
Feature: Call Control Framework
2020-01-18 10:15:49 +08:00
Archilis Wang
03bb250992 [ALPS04671051] Support NR cell in SUPL
1. Add codes to handling to NR cell in SUPL task.
2. Avoid AVC messages due to gps_data_file

MTK-Commit-Id: aa1f052111fecc95e8af838f16a34cf2f2695f60

Change-Id: Id47d9ab2999ca482f4ec077a0d0d38f4060135ca
CR-Id: ALPS04671051
Feature: A-GPS
2020-01-18 10:15:48 +08:00
Yuhui Zhang
33cd81efe3 Merge "[ALPS04360439] [EM]sensor: seapp_contexts" into alps-trunk-q0.basic
Change-Id: I412735f20b2237ff4dee65c0c6614e14771b10e1
MTK-Commit-Id: 8b578d162200501bf5e6b715c9c951fb8e4a6541
2020-01-18 10:15:48 +08:00
Juan Rong
622ff9c7ea [ALPS04360439] [EM]sensor: seapp_contexts
Add sensorhub to seapp_contexts

MTK-Commit-Id: 7ba9222e70010a5ebc5ba54a50d824587dd58003

Change-Id: I5549731a3aea57ba0a3cfe6133dd6a4f75f1d615
CR-Id: ALPS04360439
Feature: Engineering Mode
2020-01-18 10:15:43 +08:00
Shanshan Guo
22def67dd5 Merge "[ALPS04668349] SEPolicy: Fix build error" into alps-trunk-q0.basic
Change-Id: I9cc0942ab1950840696f99e5f49f214125bfe025
MTK-Commit-Id: d67faa36634f296f71b6435bad4bcd1127a8391b
2020-01-18 10:15:42 +08:00
Shanshan Guo
54facf3dd8 [ALPS04668349] SEPolicy: Fix build error
[Detail]
mtk_em_tel_log_prop is defined in bsp/, the rule in basic/ will
cause error while building basic project.

[Solution]
Move the rule of mtk_em_tel_log_prop from basic/ to bsp/.

MTK-Commit-Id: 0d04d80f653343466407bd1dd3b260bfdd0859a9

Change-Id: Ibb01bd54502f5178fc35429c5df128a6c319e812
CR-Id: ALPS04668349
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 10:15:40 +08:00
Shanshan Guo
9da0a3382a Merge "[ALPS04640303] SEPolicy: Fix app violation" into alps-trunk-q0.basic
Change-Id: I54a57ecf9ca4748c666aaf7f253e7c02e48db6b7
MTK-Commit-Id: 6d27da21401c62e0567e2e6c767f62b69c82fca7
2020-01-18 10:15:39 +08:00
Shanshan Guo
b11cda4bfd [ALPS04640303] SEPolicy: Fix app violation
[Detail]
There are some selinux violation for app in MTBF,
need to add some sepolicy for them.

[Solution]
1.Add sepolicy
2.Move sepolicy of untrusted_app_* to untrusted_app_*.te
3.Modify sepolicy

MTK-Commit-Id: 62b5c74c6d1d85acf0184fc18fca0b40c4a8e60c

Change-Id: Icac33ccc54b691ee0e4ab7088f77adb1c1a4a549
CR-Id: ALPS04640303
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 10:15:38 +08:00
ILEX Lin
7012d951fc [ALPS04301155] Add sepolicy for map permission
[Detail]
Add map permission

MTK-Commit-Id: 7b56fd53c6750cad964b88143baad705cab0e5e7

Change-Id: Icda5b113470e4020fba7d955570cfc60d8a65e22
CR-Id: ALPS04301155
Feature: NFC Chipset Capability
2020-01-18 10:15:36 +08:00
Chang-An Chen
c5a06e5ce9 Merge "[ALPS04658973] ota update: add recovery.te for basic project" into alps-trunk-q0.basic
Change-Id: I61159a559b59bd9d9c98c8a1596331d5907db8b6
MTK-Commit-Id: 5506bffaa6d98355fd7db32bd698fecec97a4074
2020-01-18 10:15:35 +08:00
Freddy Hsin
dfac4fce0a [ALPS04658973] ota update: add recovery.te for basic project
add recovery.te to grant the permission under
recovery of basic function

MTK-Commit-Id: 5484785e1a1d5a45616e8b75b7bf42274314b042

Change-Id: I8bdfb2bc847154fb5b1c3ce4515541047c6df3b4
CR-Id: ALPS04658973
Feature: [Android Default] SIU (SD Image Update)
2020-01-18 10:15:30 +08:00
Shanshan Guo
62cf1a413a [ALPS04639771] SEPolicy: Modify workaround
[Detail]
There is a workaround for bring-up,
now it needs to be modified.

[Solution]
1.Split workaround to sepcial *.te
2.Modify ged sepolicy
3.Modify mistake
4.Add sepolicy

MTK-Commit-Id: 5a2b7e3fdc826a7ca6bc70a3810f14c1661e7d79

Change-Id: I0894de45e014a5eae754e35b57fbc9b21bc4bf90
CR-Id: ALPS04639771
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 10:15:29 +08:00
Zhongchao Xia
f513291cad Merge "[ALPS04654012] SurfaceFlinger: update proc_ged sepolicy" into alps-trunk-q0.basic
Change-Id: I682fe7121c21b1ab20a9062e254d2f14b09602b8
MTK-Commit-Id: f93f7492c759635796a507ef89feb4d7e192446a
2020-01-18 10:15:26 +08:00
Kaiduan.Cao
a7a2701b66 [ALPS04654012] SurfaceFlinger: update proc_ged sepolicy
Update the sepolicy for surfaceflinger proc_ged ioctl.

MTK-Commit-Id: 61dc5b4a1d4886d3a53879e4db927ec7f115b3b5

Change-Id: I1479e29fa864c44e8ed3850a650511ca4ba52602
CR-Id: ALPS04654012
Feature: [Module]SurfaceFlinger/HWComposer
2020-01-18 10:15:23 +08:00
Yongmao Xie
6d785caf19 Merge "[ALPS04660543] MDM HIDL change feature" into alps-trunk-q0.basic
Change-Id: I847f1900c968e9eefd45ae1a638b3a3d1e3a7f63
MTK-Commit-Id: 1d9837ff0d879163eb98109e274db29a016c716f
2020-01-18 10:15:22 +08:00
Zhengyu Zhan
bd57f96afe [ALPS04660543] MDM HIDL change feature
[Detail]
md_monitor will build to vendor image, now it will use HIDL to connect
with JAVA user.

device.mk, SELinux policy about md_monitor need change from system to
vendor, and add relate contents for HILD service.

MDML change:
PlainDataDecoder now need use new constructor with a context, old
constructor will throw an Exception.

For single modem bin:
layout and filter bin file will move from /data/md_mon to
/data/vendor/md_mon. JAVA user shall get layout file via HIDL, then
save a temp file in its cache folder.

For non-single modem bin:
layout file move from /system/etc/mddb/ to /vendor/etc/mddb/, filter bin
file move from /system/etc/firmware/ to /vendor/etc/firmware/. And
system process can access /vendor/etc/. So dont need other change.

MTK-Commit-Id: be91b65d9497e3190ea1127bc71ed2abcb32ed98

Change-Id: I5c99f81c4be7a9f41d3b955156ab3e50ec655d97
CR-Id: ALPS04660543
Feature: Modem Monitor(MDM) Framework
2020-01-18 10:15:17 +08:00
Ethan Lau (劉榮茂)
7bbd9db661 Merge "[ALPS04653648] Factory Mode: fix SElinux policy" into alps-trunk-q0.basic
Change-Id: Ie269effa84c31f1fa4b0e71eca17985d31391a8b
MTK-Commit-Id: 8a2011d115b294b0487d42e668ed3da9c074981d
2020-01-18 10:15:16 +08:00
Jenny Hsu
9018986a9a [ALPS04653648] Factory Mode: fix SElinux policy
[Detail] Add whitelist for SELinux avc denied problem

MTK-Commit-Id: 77c1c8b73aa059657ab355206e5bc73410db6534

Change-Id: I1e8911b3ccd94a0d59ab6f22dd7948d4fcb89abf
CR-Id: ALPS04653648
Feature: Factory Mode
2020-01-18 10:15:12 +08:00
Guoyi Qu
6424d6bcfc Merge "[ALPS04532537] Copy vendor modem db and filter" into alps-trunk-q0.basic
Change-Id: I492632bcd58169f121208cba92f9d49bae55bdac
MTK-Commit-Id: 88e9281d903d0132cdf089c4541b6effce5f3e05
2020-01-18 10:15:10 +08:00