Evolution-x-devices/device_xiaomi_rosemary
2
0
Fork 0
mirror of https://github.com/Evolution-X-Devices/device_xiaomi_rosemary synced 2026-01-27 18:07:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
501 Commits 1 Branch 0 Tags
44b07ec8d82de8aa479182832eca55935673c5bf
Commit Graph

79 Commits

Author SHA1 Message Date
bengris32
c7cee9a245 rosemary: sepolicy: Label our custom Sensors service 
Change-Id: I15f7021e7487b844f7f1f5cad2cc8a150bcaca4d
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2024-02-19 12:01:04 +01:00
bengris32
967d552a2f rosemary: Switch to AOSP audio service 
Change-Id: I933b66e3821562022eb837af91ad4039e22fb578
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2024-02-19 11:42:22 +01:00
Matsvei Niaverau
681c35fbcd rosemary: sepolicy: Drop proc_vm_dirty definition 
* Moved to common Mediatek sepolicy

Change-Id: I5d01898ca413f9ca3d7c022a07ffed0c4b6bae9d
 2024-02-19 11:42:22 +01:00
Matsvei Niaverau
c36d873f1f rosemary: Bring back Mediatek Power HAL 
* Perf configs from: https://github.com/nashc-dev/android_device_realme_nashc/tree/lineage-20/configs/perf

Change-Id: I7bb964e089f1549f849daf08532baaeabcc99379
 2024-02-19 11:42:22 +01:00
Matsvei Niaverau
97dcc44562 Revert "Revert "rosemary: Build Lineage Health HAL"" 
This reverts commit dd395cf5f7.

Change-Id: Ief50a7a4478cabeedb3fc00c69f7fabbea3d2f58
 2023-10-09 14:11:19 +02:00
Matsvei Niaverau
c4c728b193 rosemary: sepolicy: Correct maxim_ds28e16 node location 
Change-Id: I0949a053675a071efec584f282eb91f88cae4209
 2023-10-09 09:53:48 +02:00
Matsvei Niaverau
da8e5743a0 rosemary: sepolicy: Allow batterysecret to write to vendor_sysfs_usb_supply 
Change-Id: I30bf27da8d675a0ee9e489eafac078a491d53ab0
 2023-10-09 09:25:39 +02:00
bengris32
d1c908756b rosemary: sepolicy: Allow batterysecret R/W to sysfs_batteryinfo 
* audit(0.0:373): avc: denied { read write } for name="authentic" dev="sysfs" ino=46203 scontext=u:r:batterysecret:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Change-Id: Ifd7a929419851e938f02397dc84fdfb1424e1283
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-10-09 08:39:32 +02:00
bengris32
855569626e rosemary: sepolicy: Remove unsecure rules from batterysecret policy 
* Allowing any process full sysfs, cgroup, mnt_vendor_file access is
  inherently dangerous, instead we will label and allow access to only
  the nodes that batterysecret needs to access.

Change-Id: Ia7bbe32a581bc22c1c38726cdaf9d8509d11f883
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-10-09 08:39:32 +02:00
SahilSonar
b17af939e2 rosemary: sepolicy: Add vendor_* prefix 
* Comply with sepolicy vendor namespace

Change-Id: I5259c450443dc4b107fb6175b6ee43a39cf66ec1
 2023-08-28 16:02:40 +02:00
Matsvei Niaverau
be05167865 rosemary: sepolicy: Mark thermal_engine_prop as vendor_internal_prop 
Change-Id: Idf40d649305911008b46990ebfcb15386f926b48
 2023-08-23 13:51:34 +02:00
Matsvei Niaverau
31eb91191d Revert "rosemary: sepolicy: Label IR property" 
* Not labeled on stock

This reverts commit 60250c7f20.

Change-Id: I3f51ae15d170295f3e8a557390a12ee3f5bcfbb6
 2023-08-23 13:51:27 +02:00
Sarthak Roy
09d3204570 rosemary: sepolicy: Fix property violations 
Change-Id: I736d314c2d9bb1444e542739a7b6b70c62395580
 2023-06-26 21:02:24 +02:00
Matsvei Niaverau
dd395cf5f7 Revert "rosemary: Build Lineage Health HAL" 
This reverts commit c4a4c66c1a.

Change-Id: Id124dec21f2e3443d15e4d905f2fdb761252b0cd
 2023-06-22 14:41:58 +02:00
Michael Bestas
c4a4c66c1a rosemary: Build Lineage Health HAL 
Change-Id: I70cc903a03ac9fa3303bb8fa039c9de4806449bf
 2023-06-21 09:52:20 +02:00
DarkJoker360
93d94923dd rosemary: sepolicy: Update gpu related sysfs labels 
* Matches mediatek sepolicy repo.

Change-Id: I486f82d8cc913a17eeb9afc66aa403b90716a6cf
 2023-06-01 12:44:18 +02:00
Matsvei Niaverau
5eca53c64f rosemary: sepolicy: Cleanup perfmgr sepolicy 
* Moved to Mediatek sepolicy repository

Change-Id: I01520d26f42a2a229bbfe2c70ad721e6a9e9452a
 2023-05-03 18:32:46 +02:00
Sebastiano Barezzi
e4288ab9b3 rosemary: sepolicy: Split system and vendor fingerprint data types 
* The following types on /data/vendor/ must not be associated with the
  "core_data_file_type" attribute: vendor_fingerprint_data_file

Change-Id: I7d1909d7f478e3252f361497aff51db3dc7ca77f
 2023-04-25 17:59:38 +02:00
Sebastiano Barezzi
c5bbba476d rosemary: sepolicy: Fix fingerprint neverallows 
* Mark vendor domains using fingerprint data as
  data_between_core_and_vendor_violators

Change-Id: Ic4e68597ace96598d10eb4439949a264aae5d229
 2023-04-25 17:59:38 +02:00
Jeff Vander Stoep
b9edb74e6a rosemary: sepolicy: Correctly label non-vendor data types 
* Data outside /data/vendor must have the core_data_file_type
  attribute.

Test: build (this is a build time test)
Bug: 34980020
Change-Id: I372c80da64abc26d8dd1478d208074de25d88357
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
6b9bfb8b3c rosemary: sepolicy: Label one more wakeup node 
Change-Id: Id425ec5c82577ac4942bb03f429b8da0f72fc138
 2023-04-25 17:59:38 +02:00
wbs306
2e1b102220 rosemary: sepolicy: Allow system app to get FM Radio related prop 
Change-Id: Ia03baadd5d96c1f93f9ce2477186c1314d304156
 2023-04-25 17:59:38 +02:00
bengris32
8eaaab0cd8 rosemary: Allow libperfmgr to write to touchpanel nodes 
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-04-25 17:59:38 +02:00
bengris32
607903e888 rosemary: Label mali nodes under sysfs 
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-04-25 17:59:38 +02:00
bengris32
1146b17663 rosemary: Allow libperfmgr to access fpsgo nodes 
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-04-25 17:59:38 +02:00
bengris32
0144797a61 rosemary: Address libperfmgr denials 
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-04-25 17:59:38 +02:00
Vaisakh Murali
8d72ba4fed rosemary: Rename all powerhal props to avoid sepolicy conflicts 
MTK labels the vendor.powerhal prop as with their own context, but
using the same contexts leads to more error. Instead switch to a
different prop naming which will not conflict with MTK context.

Signed-off-by: Vaisakh Murali <mvaisakh@statixos.com>
Change-Id: I1dd8f85a4170917bcd8dacbef4f5086931bc7352
 2023-04-25 17:59:38 +02:00
Vaisakh Murali
45ad6ee271 rosemary: Kang pixel power-libperfmgr sepolicy 
Signed-off-by: Vaisakh Murali <mvaisakh@statixos.com>
 2023-04-25 17:59:38 +02:00
bengris32
1eb3b8bb5a rosemary: Label stub mtkpower service 
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
8305bf5142 rosemary: sepolicy: Allow elliptic sensors HAL access audio 
* Partially from: 7861ee195d/sepolicy/vendor/hal_sensors_default.te

Change-Id: Id664e4cb80aee1c749c4493cc97fd51aa95b14c0
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
5bad7791f7 rosemary: sepolicy: Label more maxim_ds28e16 nodes 
Change-Id: I237f039cd15a82bc3175850b6d272f3f911fed02
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
7a11d13e93 rosemary: sepolicy: Label FPC fingerprint nodes 
Change-Id: I6373175abf5262105ffe738d1781af29f9a477c3
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
495623dc72 rosemary: sepolicy: Allow camera HAL to write vendor_data_file 
Change-Id: I8944267a4bda97fb2958b7ee4e653f8a59c44143
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
fa2178baf5 rosemary: sepolicy: Allow sensors HAL to write sensor_data_file 
Change-Id: I4e97971a1d232e75b209d24a797748e779d1ba14
 2023-04-25 17:59:38 +02:00
Pulkit077
cc483a0934 rosemary: sepolicy: label maxim_ds28e16 battery node 
Change-Id: I314dbbc36773e3d2f526cf7ff8cb76f5a8d19d28
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
4c47c7d47d rosemary: sepolicy: Label one more power_supply 
Change-Id: I3e813017e80af7519603750a8b772695bc3b85dc
 2023-04-25 17:59:38 +02:00
Vaisakh Murali
869df2b793 rosemary: sepolicy: Label renamed AOSP AIDL vibrator HAL 
Change-Id: I913e27a656e01742ee4ed478659e99d8ce7fe287
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
947b4da090 rosemary: sepolicy: Address sensor HAL denials 
Change-Id: Ife8d49f5c8f5eda6c27febdd70e664f4a276c99f
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
78b362da4c rosemary: sepolicy: Label Extcon node 
Change-Id: I86aab63212cee0e7e410f2a9d9792fb6917a4b58
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
18c32fac8d rosemary: sepolicy: Allow sensors HAL to write nvcfg_file 
Change-Id: I6fbff45ce252a7a5300a98c4bcc871d443798d05
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
88e7f4ce80 rosemary: sepolicy: Label elliptic sensors node 
Change-Id: Id9ed31d1922da0480ad4f14711ab0cbdc563378a
 2023-04-25 17:59:38 +02:00
LuK1337
9d4a0eed47 rosemary: sepolicy: Label wakeup nodes 
for i in $(realpath /sys/class/wakeup/*); do if ! echo "$(ls -dZ $i)" | grep -q sysfs_wakeup; then echo genfscon sysfs $(echo $i | sed -e 's|/sys||g' -e 's|wakeup/wakeup.|wakeup|g' -e 's|wakeup[0-9]*|wakeup|g') u:object_r:sysfs_wakeup:s0; fi; done | sort -u

Change-Id: Id70f4e725f8925b31c0007fae5eb98756ddcd410
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
60250c7f20 rosemary: sepolicy: Label IR property 
Change-Id: I6637743f0dba526c786e122db54b3552cf4735e9
 2023-04-25 17:59:38 +02:00
Isaac Chen
fddd904180 rosemary: sepolicy: Address IR denials 
Signed-off-by: Isaac Chen <isaacchen@isaacchen.cn>
Change-Id: I8c7ae4594af864f36726b1e0956d2be3dfa4d2c5
 2023-04-25 17:59:38 +02:00
Matsvei Niaverau
d55be393a7 rosemary: sepolicy: Label vibrator nodes 
Change-Id: I49131bb01731584841ae276a488406f3e9dd0a5c
 2023-04-25 17:59:38 +02:00
Kuba Wojciechowski
56b2c461d0 rosemary: sepolicy: initial rules for batterysecret 
* Fixes:
07-25 15:31:45.325     0     0 I init    : starting service 'batterysecret'...
07-25 15:31:45.336     0     0 F init    : cannot setexeccon('u:r:batterysecret:s0') for batterysecret: Invalid argument
07-25 15:31:45.345     0     0 I init    : Service 'batterysecret' (pid 6483) exited with status 6
07-25 15:31:45.345     0     0 I init    : Sending signal 9 to service 'batterysecret' (pid 6483) process group...

Signed-off-by: Kuba Wojciechowski <nullbytepl@gmail.com>
Change-Id: I4c547a0162275a1fb99b1038f8bdd5b1f8632095
 2023-04-25 17:59:38 +02:00
Sebastiano Barezzi
f206a06d5a rosemary: Build common Xiaomi fingerprint HIDL 
Change-Id: I6c29a831e985ee440c92a98aad8d33f25b9e5b2d
 2023-04-15 14:36:56 +02:00
Kevin F. Haggerty
e20160a997 rosemary: sepolicy: Allow system_app to read /proc/pagetypeinfo 
avc: denied { read } for name="pagetypeinfo" dev="proc" ino=4026543033
scontext=u:r:system_app:s0 tcontext=u:object_r:proc_pagetypeinfo:s0
tclass=file permissive=0

Change-Id: I16465eb9acca9ff64a755d47f86f4ff424ebe4de
 2023-04-15 14:36:56 +02:00
Kevin F. Haggerty
cce24cd712 rosemary: sepolicy: Allow system_app to access zram sysfs nodes 
avc: denied { search } for name="zram0" dev="sysfs" ino=20744
scontext=u:r:system_app:s0 tcontext=u:object_r:sysfs_zram:s0 tclass=dir
permissive=0

avc: denied { open } for name="mem_used_total" dev="sysfs" ino=20804
scontext=u:r:system_app:s0 tcontext=u:object_r:sysfs_zram:s0 tclass=file
permissive=0

avc: denied { read } for name="mem_used_total" dev="sysfs" ino=20804
scontext=u:r:system_app:s0 tcontext=u:object_r:sysfs_zram:s0 tclass=file
permissive=0

Change-Id: Ide9b1a9488b26fa69e7a2c8e73a8e657c8b28beb
 2023-04-15 14:36:56 +02:00
bengris32
37e2411ed5 rosemary: sepolicy: Label persist camera data directory 
Signed-off-by: bengris32 <bengris32@protonmail.ch>
 2022-12-07 00:10:21 +01:00