device_google_wahoo/sepolicy at 1ff004a52906d5c1787d144c463533e0677a99b2 - device_google_wahoo - EvolutionX mirror

Evolution-x-devices/device_google_wahoo

mirror of https://github.com/Evolution-X-Devices/device_google_wahoo synced 2026-01-31 20:10:27 +00:00

Files

History

Max Bires 18e9c1d20a Adding allows for runtime denials

Allows address following denials:
denied { create } for pid=1108 comm="lowi-server"
scontext=u:r:location:s0 tcontext=u:r:location:s0 tclass=netlink_socket

denied { read } for pid=4201 comm="lowi-server" scontext=u:r:location:s0
tcontext=u:r:location:s0 tclass=socket

denied { ioctl } for pid=4199 comm="lowi-server" path="socket:[80441]"
dev="sockfs" ino=80441 ioctlcmd=c302 scontext=u:r:location:s0
tcontext=u:r:location:s0 tclass=socket

denied { create } for pid=4199 comm="lowi-server"
scontext=u:r:location:s0 tcontext=u:r:location:s0 tclass=socket

denied { write } for pid=1108 comm="lowi-server"
scontext=u:r:location:s0 tcontext=u:r:location:s0 tclass=socket

denied { read } for pid=4196 comm="lowi-server" scontext=u:r:location:s0
tcontext=u:r:location:s0 tclass=netlink_generic_socket

denied { write } for pid=4196 comm="lowi-server"
scontext=u:r:location:s0 tcontext=u:r:location:s0
tclass=netlink_generic_socket

denied { read } for pid=695 comm="pd-mapper" scontext=u:r:pd_mapper:s0
tcontext=u:r:pd_mapper:s0 tclass=socket

denied { write } for pid=828 comm="cnd" scontext=u:r:cnd:s0
tcontext=u:r:cnd:s0 tclass=socket

denied { read } for pid=677 comm="pd-mapper" scontext=u:r:pd_mapper:s0
tcontext=u:r:pd_mapper:s0 tclass=socket

denied { write } for pid=677 comm="pd-mapper" scontext=u:r:pd_mapper:s0
tcontext=u:r:pd_mapper:s0 tclass=socket

Bug: 34784662
Test: The above denials are no longer present
Change-Id: I744572a72d1106765c0b1a397e51ac070000e48b

2017-03-17 14:04:26 -07:00

..

adsprpcd.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

audioserver.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

bluetooth.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

bootanim.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

cameraserver.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

cnd.te

Adding allows for runtime denials

2017-03-17 14:04:26 -07:00

device.te

Adding contexts and rules to address denials.

2017-03-16 21:47:32 +00:00

domain.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

file_contexts

Merge "Adding contexts and rules to address denials."

2017-03-16 22:50:03 +00:00

file.te

Merge "Adding contexts and rules to address denials."

2017-03-16 22:50:03 +00:00

fsck.te

Adding contexts and rules to address denials.

2017-03-16 21:47:32 +00:00

gatekeeperd.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

genfs_contexts

hal_wifi: Allow wifi hal to access /proc/debug

2017-03-13 15:26:45 -07:00

hal_fingerprint.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

hal_gatekeeper.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

hal_graphics_composer_default.te

Enable and binderize hwcomposer hal

2017-03-10 14:04:03 -08:00

hal_wifi.te

hal_wifi: Allow wifi hal to access /proc/debug

2017-03-13 15:26:45 -07:00

ims.te

Adding ism service allow rules and according ioctl_define

2017-03-16 22:10:52 +00:00

imscm.te

Removing domain_deprecated from .te files

2017-03-16 15:58:12 -07:00

init_power.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

init_radio.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

init.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

ioctl_defines

Adding ism service allow rules and according ioctl_define

2017-03-16 22:10:52 +00:00

ioctl_macros

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

irsc_util.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

kernel.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

location.te

Adding allows for runtime denials

2017-03-17 14:04:26 -07:00

netmgrd.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

nfc_hal_pn54x.te

Add nfc conf files and policy files

2017-03-14 16:44:37 -07:00

nfc.te

Add nfc conf files and policy files

2017-03-14 16:44:37 -07:00

pd_services.te

Adding allows for runtime denials

2017-03-17 14:04:26 -07:00

per_mgr.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

per_proxy.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

perfd.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

port-bridge.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

property_contexts

sepolicy: Support subsystem ramdump selinux config

2017-03-10 23:27:39 +00:00

property.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

qmuxd.te

Removing domain_deprecated from .te files

2017-03-16 15:58:12 -07:00

qti.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

ramdump.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

rfs_access.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

rild.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

rmt_storage.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

sensors.te

Adding contexts and rules to address denials.

2017-03-16 21:47:32 +00:00

service_contexts

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

service.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

ssr_diag.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

ssr_setup.te

sepolicy: Support subsystem ramdump selinux config

2017-03-10 23:27:39 +00:00

subsystem_ramdump.te

sepolicy: Support subsystem ramdump selinux config

2017-03-10 23:27:39 +00:00

surfaceflinger.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

system_app.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

system_server.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

tee.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

thermal-engine.te

Adding contexts and rules to address denials.

2017-03-16 21:47:32 +00:00

time_daemon.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

ueventd.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

wcnss_filter.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00

wcnss_service.te

Import common file from device specific directory

2017-03-04 23:34:45 -08:00