diff options
author | Shanshan Guo <Shanshan.Guo@mediatek.com> | 2020-01-11 12:18:32 +0800 |
---|---|---|
committer | Shanshan Guo <Shanshan.Guo@mediatek.com> | 2020-01-11 15:39:25 +0800 |
commit | ee386fd7ca89105f70b96f6b58c5f0e372fe9a4b (patch) | |
tree | c34a5eac55110d0b9a6285ebaa741196f3253188 /r_non_plat | |
parent | 86296cf74da59aa881bb2ae8ad868195b67079d5 (diff) | |
download | wembley-sepolicy-ee386fd7ca89105f70b96f6b58c5f0e372fe9a4b.tar.gz |
[ALPS04968083] SEPolicy: Modify sepolicy files' mode and type
[Detail]
The mode of sepolicy files should be -rw-r--r--,
and the type should be ASCII text with Unix/Linux format.
[Solution]
1.Use 'chmod 0644' to change sepolicy files' mode.
2.Use 'iconv -t ASCII' and 'dos2unix' to change sepolicy files'
type and format.
Change-Id: Iac13b1ea8a4546168f68a7918acdcdb0588f6630
CR-Id: ALPS04968083
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
Diffstat (limited to 'r_non_plat')
-rw-r--r--[-rwxr-xr-x] | r_non_plat/connsyslogger.te | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/hal_mms.te | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/hal_nvramagent.te | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/hal_thermal_default.te | 0 | ||||
-rw-r--r-- | r_non_plat/hwservice_contexts | 138 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/ioctl_defines | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/mediaswcodec.te | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/modemdbfilter_service.te | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/mtk_hal_md_dbfilter.te | 12 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/mtk_hal_mms.te | 0 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/mtk_hal_wifi.te | 0 | ||||
-rw-r--r-- | r_non_plat/netd.te | 16 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/uncrypte.te | 4 | ||||
-rw-r--r--[-rwxr-xr-x] | r_non_plat/vold_prepare_subdirs.te | 0 |
14 files changed, 85 insertions, 85 deletions
diff --git a/r_non_plat/connsyslogger.te b/r_non_plat/connsyslogger.te index 36b700d..36b700d 100755..100644 --- a/r_non_plat/connsyslogger.te +++ b/r_non_plat/connsyslogger.te diff --git a/r_non_plat/hal_mms.te b/r_non_plat/hal_mms.te index 766ccac..766ccac 100755..100644 --- a/r_non_plat/hal_mms.te +++ b/r_non_plat/hal_mms.te diff --git a/r_non_plat/hal_nvramagent.te b/r_non_plat/hal_nvramagent.te index 680a031..680a031 100755..100644 --- a/r_non_plat/hal_nvramagent.te +++ b/r_non_plat/hal_nvramagent.te diff --git a/r_non_plat/hal_thermal_default.te b/r_non_plat/hal_thermal_default.te index 2a648fb..2a648fb 100755..100644 --- a/r_non_plat/hal_thermal_default.te +++ b/r_non_plat/hal_thermal_default.te diff --git a/r_non_plat/hwservice_contexts b/r_non_plat/hwservice_contexts index 3991a9f..e3e2b34 100644 --- a/r_non_plat/hwservice_contexts +++ b/r_non_plat/hwservice_contexts @@ -1,69 +1,69 @@ -vendor.mediatek.hardware.bluetooth::IMtkBluetoothHci u:object_r:mtk_hal_bluetooth_hwservice:s0
-
-# Date: 2017/05/9
-vendor.mediatek.hardware.mtkradioex::IMtkRadioEx u:object_r:mtk_hal_rild_hwservice:s0
-vendor.mediatek.hardware.radio::ISap u:object_r:mtk_hal_rild_hwservice:s0
-vendor.mediatek.hardware.interfaces_tc1.mtkradioex_tc1::IMtkRadioEx u:object_r:mtk_hal_rild_hwservice:s0
-vendor.mediatek.hardware.radio_op::IRadioOp u:object_r:mtk_hal_rild_hwservice:s0
-
-# Date: 2017/06/07
-# power hidl
-vendor.mediatek.hardware.mtkpower::IMtkPerf u:object_r:mtk_hal_power_hwservice:s0
-vendor.mediatek.hardware.mtkpower::IMtkPower u:object_r:mtk_hal_power_hwservice:s0
-vendor.mediatek.hardware.power::IPerf u:object_r:mtk_hal_power_hwservice:s0
-vendor.mediatek.hardware.power::IPower u:object_r:mtk_hal_power_hwservice:s0
-
-
-
-# Date: 2017/06/12
-# LBS HIDL
-vendor.mediatek.hardware.lbs::ILbs u:object_r:mtk_hal_lbs_hwservice:s0
-
-# Date : 2017/06/27
-# IMSA HIDL
-vendor.mediatek.hardware.imsa::IImsa u:object_r:mtk_hal_imsa_hwservice:s0
-
-# Date : 2017/07/12
-#nvram hidl
-vendor.mediatek.hardware.nvram::INvram u:object_r:nvram_agent_binder_hwservice:s0
-
-# Date : 2017/07/19
-# PQ HIDL
-vendor.mediatek.hardware.pq::IPictureQuality u:object_r:mtk_hal_pq_hwservice:s0
-
-# Date: 2017/07/20
-# keymaster attestation hidl
-vendor.mediatek.hardware.keymaster_attestation::IKeymasterDevice u:object_r:mtk_hal_keyattestation_hwservice:s0
-
-# Date: 2018/05/25
-# FM HIDL
-vendor.mediatek.hardware.fm::IFmRadio u:object_r:mtk_hal_fm_hwservice:s0
-
-# Date: 2018/03/23
-# log hidl
-vendor.mediatek.hardware.log::ILog u:object_r:mtk_hal_log_hwservice:s0
-
-# Date: 2018/06/26
-# em hidl
-vendor.mediatek.hardware.engineermode::IEmd u:object_r:mtk_hal_em_hwservice:s0
-
-# Date : 2018/07/02
-# MMS HIDL
-vendor.mediatek.hardware.mms::IMms u:object_r:mtk_hal_mms_hwservice:s0
-
-# Date : 2019/04/19
-# GPU HIDL
-vendor.mediatek.hardware.gpu::IGraphicExt u:object_r:mtk_hal_gpu_hwservice:s0
-
-# Date: 2019/06/12
-# modem db filter hidl
-vendor.mediatek.hardware.modemdbfilter::ICopyDBFilter u:object_r:mtk_hal_md_dbfilter_hwservice:s0
-
-# Date: 2019/07/04
-vendor.mediatek.hardware.camera.lomoeffect::ILomoEffect u:object_r:hal_camera_hwservice:s0
-vendor.mediatek.hardware.camera.ccap::ICCAPControl u:object_r:hal_camera_hwservice:s0
-vendor.mediatek.hardware.camera.bgservice::IBGService u:object_r:mtk_hal_bgs_hwservice:s0
-
-# Date : 2019/07/16
-# HDMI HIDL
-vendor.mediatek.hardware.hdmi::IMtkHdmiService u:object_r:mtk_hal_hdmi_hwservice:s0
+vendor.mediatek.hardware.bluetooth::IMtkBluetoothHci u:object_r:mtk_hal_bluetooth_hwservice:s0 + +# Date: 2017/05/9 +vendor.mediatek.hardware.mtkradioex::IMtkRadioEx u:object_r:mtk_hal_rild_hwservice:s0 +vendor.mediatek.hardware.radio::ISap u:object_r:mtk_hal_rild_hwservice:s0 +vendor.mediatek.hardware.interfaces_tc1.mtkradioex_tc1::IMtkRadioEx u:object_r:mtk_hal_rild_hwservice:s0 +vendor.mediatek.hardware.radio_op::IRadioOp u:object_r:mtk_hal_rild_hwservice:s0 + +# Date: 2017/06/07 +# power hidl +vendor.mediatek.hardware.mtkpower::IMtkPerf u:object_r:mtk_hal_power_hwservice:s0 +vendor.mediatek.hardware.mtkpower::IMtkPower u:object_r:mtk_hal_power_hwservice:s0 +vendor.mediatek.hardware.power::IPerf u:object_r:mtk_hal_power_hwservice:s0 +vendor.mediatek.hardware.power::IPower u:object_r:mtk_hal_power_hwservice:s0 + + + +# Date: 2017/06/12 +# LBS HIDL +vendor.mediatek.hardware.lbs::ILbs u:object_r:mtk_hal_lbs_hwservice:s0 + +# Date : 2017/06/27 +# IMSA HIDL +vendor.mediatek.hardware.imsa::IImsa u:object_r:mtk_hal_imsa_hwservice:s0 + +# Date : 2017/07/12 +#nvram hidl +vendor.mediatek.hardware.nvram::INvram u:object_r:nvram_agent_binder_hwservice:s0 + +# Date : 2017/07/19 +# PQ HIDL +vendor.mediatek.hardware.pq::IPictureQuality u:object_r:mtk_hal_pq_hwservice:s0 + +# Date: 2017/07/20 +# keymaster attestation hidl +vendor.mediatek.hardware.keymaster_attestation::IKeymasterDevice u:object_r:mtk_hal_keyattestation_hwservice:s0 + +# Date: 2018/05/25 +# FM HIDL +vendor.mediatek.hardware.fm::IFmRadio u:object_r:mtk_hal_fm_hwservice:s0 + +# Date: 2018/03/23 +# log hidl +vendor.mediatek.hardware.log::ILog u:object_r:mtk_hal_log_hwservice:s0 + +# Date: 2018/06/26 +# em hidl +vendor.mediatek.hardware.engineermode::IEmd u:object_r:mtk_hal_em_hwservice:s0 + +# Date : 2018/07/02 +# MMS HIDL +vendor.mediatek.hardware.mms::IMms u:object_r:mtk_hal_mms_hwservice:s0 + +# Date : 2019/04/19 +# GPU HIDL +vendor.mediatek.hardware.gpu::IGraphicExt u:object_r:mtk_hal_gpu_hwservice:s0 + +# Date: 2019/06/12 +# modem db filter hidl +vendor.mediatek.hardware.modemdbfilter::ICopyDBFilter u:object_r:mtk_hal_md_dbfilter_hwservice:s0 + +# Date: 2019/07/04 +vendor.mediatek.hardware.camera.lomoeffect::ILomoEffect u:object_r:hal_camera_hwservice:s0 +vendor.mediatek.hardware.camera.ccap::ICCAPControl u:object_r:hal_camera_hwservice:s0 +vendor.mediatek.hardware.camera.bgservice::IBGService u:object_r:mtk_hal_bgs_hwservice:s0 + +# Date : 2019/07/16 +# HDMI HIDL +vendor.mediatek.hardware.hdmi::IMtkHdmiService u:object_r:mtk_hal_hdmi_hwservice:s0 diff --git a/r_non_plat/ioctl_defines b/r_non_plat/ioctl_defines index d227aab..d227aab 100755..100644 --- a/r_non_plat/ioctl_defines +++ b/r_non_plat/ioctl_defines diff --git a/r_non_plat/mediaswcodec.te b/r_non_plat/mediaswcodec.te index ca64913..ca64913 100755..100644 --- a/r_non_plat/mediaswcodec.te +++ b/r_non_plat/mediaswcodec.te diff --git a/r_non_plat/modemdbfilter_service.te b/r_non_plat/modemdbfilter_service.te index e1c1090..e1c1090 100755..100644 --- a/r_non_plat/modemdbfilter_service.te +++ b/r_non_plat/modemdbfilter_service.te diff --git a/r_non_plat/mtk_hal_md_dbfilter.te b/r_non_plat/mtk_hal_md_dbfilter.te index 5abc292..2b8a4e6 100755..100644 --- a/r_non_plat/mtk_hal_md_dbfilter.te +++ b/r_non_plat/mtk_hal_md_dbfilter.te @@ -1,6 +1,6 @@ -# HwBinder IPC from client to server, and callbacks
-binder_call(mtk_hal_md_dbfilter_client, mtk_hal_md_dbfilter_server)
-binder_call(mtk_hal_md_dbfilter_server, mtk_hal_md_dbfilter_client)
-
-add_hwservice(mtk_hal_md_dbfilter_server, mtk_hal_md_dbfilter_hwservice)
-allow mtk_hal_md_dbfilter_client mtk_hal_md_dbfilter_hwservice:hwservice_manager find;
+# HwBinder IPC from client to server, and callbacks +binder_call(mtk_hal_md_dbfilter_client, mtk_hal_md_dbfilter_server) +binder_call(mtk_hal_md_dbfilter_server, mtk_hal_md_dbfilter_client) + +add_hwservice(mtk_hal_md_dbfilter_server, mtk_hal_md_dbfilter_hwservice) +allow mtk_hal_md_dbfilter_client mtk_hal_md_dbfilter_hwservice:hwservice_manager find; diff --git a/r_non_plat/mtk_hal_mms.te b/r_non_plat/mtk_hal_mms.te index d52f12b..d52f12b 100755..100644 --- a/r_non_plat/mtk_hal_mms.te +++ b/r_non_plat/mtk_hal_mms.te diff --git a/r_non_plat/mtk_hal_wifi.te b/r_non_plat/mtk_hal_wifi.te index 4740f38..4740f38 100755..100644 --- a/r_non_plat/mtk_hal_wifi.te +++ b/r_non_plat/mtk_hal_wifi.te diff --git a/r_non_plat/netd.te b/r_non_plat/netd.te index 02b380f..530b767 100644 --- a/r_non_plat/netd.te +++ b/r_non_plat/netd.te @@ -5,34 +5,34 @@ # Date : WK14.34 # Operation : Migration -# Purpose : For WIFI SANITY test to set FW path(STA/P2P/AP) -# Owner£º TingTing Lei +# Purpose : For WIFI SANITY test to set FW path(STA/P2P/AP) +# Owner: TingTing Lei allow netd wmtWifi_device:chr_file { write open }; # Date : WK14.34 # Operation : Migration -# Purpose : NA -# Owner£º Changqing Sun +# Purpose : NA +# Owner: Changqing Sun allow netd kernel:system module_request; allow netd self:capability sys_module; allow netd self:capability fsetid; # Date : WK14.34 # Operation : Migration -# Purpose : APP +# Purpose: APP allow netd platform_app:fd use; # Date : WK14.37 # Operation : Migration -# Purpose : PPPOE Test +# Purpose : PPPOE Test # Owner : lina wang allow netd ppp:process sigkill; # Date : WK14.39 # Operation : Migration # Purpose : MDLogger USB logging -# Owner : Bo shang +# Owner : Bo shang allow netd mdlogger:fd use; allow netd mdlogger:tcp_socket { read write }; allow netd mdlogger:tcp_socket { getopt setopt }; @@ -40,7 +40,7 @@ allow netd mdlogger:tcp_socket { getopt setopt }; # Date : WK14.41 # Operation : Migration # Purpose : network logging -# Owner : Bo shang +# Owner : Bo shang allow netd netdiag:fd use; allow netd netdiag:udp_socket { read write getopt setopt}; diff --git a/r_non_plat/uncrypte.te b/r_non_plat/uncrypte.te index d9e3df8..27b89f7 100755..100644 --- a/r_non_plat/uncrypte.te +++ b/r_non_plat/uncrypte.te @@ -1,3 +1,3 @@ -#====================== uncrypt.te ======================
-allow uncrypt para_block_device:blk_file w_file_perms;
+#====================== uncrypt.te ====================== +allow uncrypt para_block_device:blk_file w_file_perms; allow uncrypt ota_package_file:file w_file_perms;
\ No newline at end of file diff --git a/r_non_plat/vold_prepare_subdirs.te b/r_non_plat/vold_prepare_subdirs.te index 3c531e2..3c531e2 100755..100644 --- a/r_non_plat/vold_prepare_subdirs.te +++ b/r_non_plat/vold_prepare_subdirs.te |