diff options
| author | Clarence Wong <cwong@codeaurora.org> | 2016-08-25 13:05:56 -0700 |
|---|---|---|
| committer | Clarence Wong <cwong@codeaurora.org> | 2016-08-29 13:05:55 -0700 |
| commit | c076bd843c60f35e8d9343e26190957adecbab62 (patch) | |
| tree | 4df4f1f9724408b95193c01134b31e2f51dd173a /msm8996 | |
| parent | b0c7e701b75619b950544ac3bf21aadd199111ff (diff) | |
| download | android_device_qcom_sepolicy-c076bd843c60f35e8d9343e26190957adecbab62.tar.gz android_device_qcom_sepolicy-c076bd843c60f35e8d9343e26190957adecbab62.tar.bz2 android_device_qcom_sepolicy-c076bd843c60f35e8d9343e26190957adecbab62.zip | |
Declare context for emmc for other targets
Declare context for emmc and give permission for RIDL/LogKit. RIDL needs to
be able to write to sysfs dload to enable emmc crashdumps. It also needs to
be able to read/write to the rawdump device block to copy the crashdump for
post processing and mark it as read.
Initial support was for 8937. This adds support for 8996, 8953, 8976, and
msmcobalt. It also uses symbolic link add for both LogKit II and LogKit III.
CRs-Fixed: 1002379
Change-Id: Ic7df28c392fbc918654da871dfbeef50b72765db
Diffstat (limited to 'msm8996')
| -rw-r--r-- | msm8996/device.te | 29 | ||||
| -rw-r--r-- | msm8996/file.te | 3 | ||||
| -rw-r--r-- | msm8996/file_contexts | 4 | ||||
| -rw-r--r-- | msm8996/qti-logkit.te | 33 | ||||
| -rw-r--r-- | msm8996/ridl.te | 33 |
5 files changed, 102 insertions, 0 deletions
diff --git a/msm8996/device.te b/msm8996/device.te new file mode 100644 index 00000000..66dd4e50 --- /dev/null +++ b/msm8996/device.te @@ -0,0 +1,29 @@ +# Copyright (c) 2016, The Linux Foundation. All rights reserved. +# +# Redistribution and use in source and binary forms, with or without +# modification, are permitted provided that the following conditions are +# met: +# * Redistributions of source code must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# * Redistributions in binary form must reproduce the above +# copyright notice, this list of conditions and the following +# disclaimer in the documentation and/or other materials provided +# with the distribution. +# * Neither the name of The Linux Foundation nor the names of its +# contributors may be used to endorse or promote products derived +# from this software without specific prior written permission. +# +# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT +# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS +# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR +# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF +# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR +# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE +# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN +# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +#Define rawdump block device +type rawdump_block_device, dev_type; diff --git a/msm8996/file.te b/msm8996/file.te index ebc72cfe..ed188636 100644 --- a/msm8996/file.te +++ b/msm8996/file.te @@ -34,3 +34,6 @@ type tlocd_data_file, file_type, data_file_type; # Data type for qvrd type qvrd_data_file, file_type, data_file_type; type qvrd_socket, file_type, mlstrustedobject; + +#sysfs emmc dload type +type sysfs_emmc_dload, sysfs_type, fs_type; diff --git a/msm8996/file_contexts b/msm8996/file_contexts index af12a6d3..02618e09 100644 --- a/msm8996/file_contexts +++ b/msm8996/file_contexts @@ -102,3 +102,7 @@ /data/misc/qvop(/.*)? u:object_r:qvop_data_file:s0 /data/misc/tloc(/.*)? u:object_r:tlocd_data_file:s0 /data/misc/qvr(/.*)? u:object_r:qvrd_data_file:s0 + +#rawdump partition +/dev/block/platform/soc/7464900.sdhci/by-name/rawdump u:object_r:rawdump_block_device:s0 +/sys/kernel/dload/emmc_dload u:object_r:sysfs_emmc_dload:s0 diff --git a/msm8996/qti-logkit.te b/msm8996/qti-logkit.te new file mode 100644 index 00000000..725cf476 --- /dev/null +++ b/msm8996/qti-logkit.te @@ -0,0 +1,33 @@ +# Copyright (c) 2016, The Linux Foundation. All rights reserved. +# +# Redistribution and use in source and binary forms, with or without +# modification, are permitted provided that the following conditions are +# met: +# * Redistributions of source code must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# * Redistributions in binary form must reproduce the above +# copyright notice, this list of conditions and the following +# disclaimer in the documentation and/or other materials provided +# with the distribution. +# * Neither the name of The Linux Foundation nor the names of its +# contributors may be used to endorse or promote products derived +# from this software without specific prior written permission. +# +# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT +# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS +# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR +# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF +# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR +# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE +# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN +# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +# allow qti_logkit for rawdump partition +allow qti_logkit block_device:dir r_dir_perms; +allow qti_logkit rawdump_block_device:blk_file rw_file_perms; + +# allow qti_logkit for sysfs emmc dload node +allow qti_logkit sysfs_emmc_dload:file rw_file_perms; diff --git a/msm8996/ridl.te b/msm8996/ridl.te new file mode 100644 index 00000000..0147c26c --- /dev/null +++ b/msm8996/ridl.te @@ -0,0 +1,33 @@ +# Copyright (c) 2016, The Linux Foundation. All rights reserved. +# +# Redistribution and use in source and binary forms, with or without +# modification, are permitted provided that the following conditions are +# met: +# * Redistributions of source code must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# * Redistributions in binary form must reproduce the above +# copyright notice, this list of conditions and the following +# disclaimer in the documentation and/or other materials provided +# with the distribution. +# * Neither the name of The Linux Foundation nor the names of its +# contributors may be used to endorse or promote products derived +# from this software without specific prior written permission. +# +# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT +# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS +# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR +# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF +# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR +# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE +# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN +# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +# allow RIDL for rawdump partition +allow RIDL block_device:dir r_dir_perms; +allow RIDL rawdump_block_device:blk_file rw_file_perms; + +# allow RIDL for enable sysfs node +allow RIDL sysfs_emmc_dload:file rw_file_perms; |