Evolution-X-Tensor/device_google_comet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
60 commits 1 branch 0 tags 503 MiB
Commit graph

60 commits

This branch
This branch
All branches
Author SHA1 Message Date
Shiyong Li
f23f1fc4fa Merge "Add sepolicy for power_state node" into 24D1-dev 2024-05-09 05:16:16 +00:00
Frank Yu
9667a21442 Support register AntennaTuningService. 
The devices uses RadioExt 1.7 should have grilservice_app register antennaTuningCallbacks.

The avc error log:

avc:  denied  { find } for pid=3441 uid=10273 name=com.google.input.algos.gril.IGrilAntennaTuningService/default scontext=u:r:grilservice_app:s0:c17,c257,c512,c768 tcontext=u:object_r:gril_antenna_tuning_service:s0 tclass=service_manager permissive=0

[   22.019071] type=1400 audit(1714448048.956:7): avc:  denied  { call } for  comm="pool-2-thread-1" scontext=u:r:grilservice_app:s0:c254,c256,c512,c768 tcontext=u:r:twoshay:s0 tclass=binder permissive=0 app=com.google.android.grilservice

Test: Manual. Without sepolicy error.
Bug: 321790599
Change-Id: Ie2cecaea493d37cd3009bcf9bab942a62212641f
 2024-05-03 07:10:01 +00:00
Kevin Ying
203b4dd470 Add sepolicy for power_state node 
Bug: 329703995
Test: manual - used camera
Change-Id: I3764557b98334ec73ba94a691f0cbdbacb5c8400
Signed-off-by: Kevin Ying <kevinying@google.com>
 2024-04-24 19:09:45 +00:00
Cheng Chang
229a44dbf9 sepolicy: Move the gnssif/wakeup to zumapro 
Bug: 329334328
Test: abtd device-boot-health-check-extra under b/329334328.
Test: boot and check the logcat avc.
Change-Id: Ieb02d6232186a3d0ee43b2b6c96b0db7ad4534f9
 2024-04-02 09:04:33 +00:00
derickhong
7cf67c1e9a Allow HWC to access display refresh control 
Bug: 326869289
Test: adb shell dmesg | grep avc ; adb logcat -d | grep avc
Change-Id: I353139e97728486f2a8b6c5f593cddf51adb7804
 2024-03-20 07:39:32 +00:00
Liana Kazanova
d6ab9d280a Revert "Add device specific entry back." 
Revert submission 26288713-twoshay-sepolicy-24

Reason for revert: DroidMonitor: Potential culprit for b/327235315 - verifying through ABTD before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.

Bug:327235315

Reverted changes: /q/submissionid:26288713-twoshay-sepolicy-24

Change-Id: I651bf3e08f3c97aad8627d4d471a4ee97e3b2d44
 2024-02-27 21:20:09 +00:00
Mark Chang
d3fe6924aa Add device specific entry back. 
Bug: 325422902
Test: Manual, system booted without sepolicy denied error.
Change-Id: Ife1ceda42146f2021cf15015a25a8bf6f0a754b0
Signed-off-by: Mark Chang <changmark@google.com>
 2024-02-19 05:57:21 +00:00
Wayne Lin
13470b8cec gps: refine iGNSS build system - sepolicy 
Bug: 318310869
Bug: 315915958
Test: build pass and GPS function works
Change-Id: Ie98482de964c8478f94886cd1494c6362e2c86d9
 2024-01-28 23:37:03 +08:00
Darren Hsu
9b03fffd65 sepolicy: label required display paths for hal_power_stats 
Bug: 321871758
Test: dumpsys android.hardware.power.stats.IPowerStats/default
Change-Id: Ic7f4271730b851194eaf42d3752c834ae85831bc
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2024-01-25 17:22:47 +08:00
Kai Chang
20aa003baa Merge "fingerprint: Allow fps to access wakeup node" into main 2024-01-12 09:25:50 +00:00
eddielan
6b25e7527c fingerprint: Allow fps to access wakeup node 
01-12 08:01:43.652  1852  1852 W android.hardwar: type=1400 audit(0.0:38):
avc:  denied  { write } for  name="wakeup_enable" dev="sysfs" ino=97986
scontext=u:r:hal_fingerprint_capacitance:s0
tcontext=u:object_r:sysfs_wakeup:s0 tclass=file permissive=0

Bug: 319578405
Test: Build pass & check on device
Change-Id: I31380020ac5fe61bb976954d03a9449bbe6c287d
 2024-01-12 08:20:52 +00:00
Wilson Sung
52692f5cc7 Label and sort wakeup nodes 
Bug: 318032188
Test: make sepolicy
Change-Id: I5477cee657942e1b2eb87f250adba4048c5b7696
 2024-01-08 17:06:23 +08:00
Wilson Sung
76a6fad054 Move fingerprint to each device sepolicy folder 
Bug: 312322769
Test: make sepolicy
Change-Id: I5f0032655f97e01cd18fdabb9d909e9e2295744d
 2023-12-19 03:51:26 +00:00
sashwinbalaji
05f2f5195b sepolicy: thermal: add init_thermal policies 
Bug: 315096213
Test: Build and verify for avc errors
Change-Id: Idf032c9ce1544253cebd82fda24bcd4582c95111
 2023-12-18 19:28:13 +08:00
Vincent Wang
6366ddba28 Add SEPoilcy for comet to access FingerprintHal from Settings 
Bug: 315927727
Test: Check SettingsGoogle could access FPHal via FingerprintExt
Change-Id: I462cb3847e424c1ccb7e8f06c2449b25308db96b
 2023-12-13 09:55:31 +00:00
Kamal Shafi
b66a9c1e64 sepolicy: migrate zumapro devices sepolicy 
- Move device specific sepolicy

Bug: 312869113
Test: build
Change-Id: I6f9228ba62d18cbcb6b8618b3ff7078b50daabbe
 2023-11-27 06:24:33 +00:00
Treehugger Robot
bb0a18f99c Merge "comet-sepolicy: Enable Lbe atc on secondary display" into main 2023-11-20 06:05:05 +00:00
Joe Huang
ca8e1ec77b Merge "Add sepolicy rules for gnss" into main 2023-11-03 02:39:12 +00:00
Joe Huang
d510a3608b Add sepolicy rules for gnss 
Bug: 303789385
Test: GPS test on normal & factory builds
Change-Id: I140d2ec76f11b68b2e0abac2cc9278a82048814d
 2023-11-02 17:41:32 +08:00
Jack Wu
018f7619cc Add sepolicy for dual_batt_gauge power supply 
10-30 04:38:39.556   814   814 I auditd  : type=1400 audit(0.0:13): avc:  denied  { getattr } for  comm="android.hardwar" path="/sys/devices/platform/google,dual_batt_gauge/power_supply/dualbatt/type" dev="sysfs" ino=77177 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
10-30 04:38:39.556   814   814 I auditd  : type=1400 audit(0.0:11): avc:  denied  { read } for  comm="android.hardwar" name="type" dev="sysfs" ino=77177 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
10-30 04:38:39.556   814   814 I auditd  : type=1400 audit(0.0:12): avc:  denied  { open } for  comm="android.hardwar" path="/sys/devices/platform/google,dual_batt_gauge/power_supply/dualbatt/type" dev="sysfs" ino=77177 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1

Bug: 308380763
Test: reboot device and check the avc
Change-Id: Ie39f9df23c4041ac442599d85279b69638a514d2
Signed-off-by: Jack Wu <wjack@google.com>
 2023-10-31 11:37:25 +08:00
Wilson Sung
57ed6e5523 Merge "Initial SEpolicy tracking_denials" into main 2023-10-26 05:36:20 +00:00
Wilson Sung
85bf9466c7 Initial SEpolicy tracking_denials 
Bug: 296187211
Change-Id: I277c8383945413e50c7335afac018dc579655e67
 2023-10-25 08:12:26 +00:00
YiKai Peng
5f4f0e3f60 Merge "WLC: add static i2c number for sepolicy" into main 2023-10-24 12:30:31 +00:00
YiKai Peng
74e9d81f53 WLC: add static i2c number for sepolicy 
Bug: 306699444
Test: No selinux denials related to wireless
Change-Id: I6c3a8781b4a113c14393930be65bdcb028a32c83
Signed-off-by: YiKai Peng <kenpeng@google.com>
 2023-10-24 07:16:18 +00:00
Burney Yu
527935ad96 comet-sepolicy: Enable Lbe atc on secondary display 
Bug: 283353282
Test: Check PixelDisplayService log
Change-Id: I1d60b8da4b0cd35f2b5f3aa439945588e4d1ab72
 2023-10-20 16:51:10 +08:00
timothywang
5e97a88cf9 Allow vendor_init to set camera debug prop 
Bug: 301039060
Test: build pass, check property
Change-Id: Iece5d1d88e66d65ad78cba0508cc4547d30d8c0d
 2023-10-13 18:12:59 +08:00
Joe Huang
97baab5951 Add sepolicy for gnss 
Bug: 294708565
Test: GPS test
Change-Id: I6a460a16b4a9a7624b7769c4725a03249869bb65
 2023-10-03 14:27:18 +08:00
Treehugger Robot
f147b6d264 Merge "Add service context for IDisplay/secondary" into main 2023-09-12 06:00:28 +00:00
Jenny Ho
c46d5ae695 sepolicy: add secondary battery and wireless charging permission 
Bug: 299268124
Test: data is correct in dumpstate
Change-Id: I030c3d9230980654b142902bec6c6acf942caa72
Signed-off-by: Jenny Ho <hsiufangho@google.com>
 2023-09-07 20:07:42 +08:00
Burney Yu
8572f023b2 Add service context for IDisplay/secondary 
Bug: 283353282
Test: Test pixel display interface
Change-Id: I30f56cb721155d90292049bcf35274a5d6fbe065
 2023-09-07 16:47:40 +08:00
Treehugger Robot
008fde9b04 Merge "fingerprint: Add sepolicy for SW42_fw49" into main 2023-09-07 01:30:52 +00:00
eddielan
5e161ebcd6 fingerprint: Add sepolicy for SW42_fw49 
Bug: 289005099
Test: Build pass
Change-Id: Id3000db0f274cffd3dd2a5b83299706f9543740a
 2023-09-05 16:40:42 +08:00
Tai Kuo
83b0b32da2 Remove unused CS40L26 I2C paths 
Bug: 285343932
Test: No AVC denials.
Change-Id: I35ef8dbd4304d620cf7eb57fc00f88387d76eb64
 2023-09-04 19:11:56 +08:00
Weizhung Ding
ba4ec93994 Add permission for secondary dsim am: 9f7a30113a am: b61166153d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/23703560

Change-Id: I4ade53d944e584fed5ab46eee63177e8c86b37b1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-26 09:18:35 +00:00
Weizhung Ding
b61166153d Add permission for secondary dsim am: 9f7a30113a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/23703560

Change-Id: I8b2963705df82292061d77e877a62ffaf21e4156
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-26 08:32:29 +00:00
Weizhung Ding
9f7a30113a Add permission for secondary dsim 
Bug: 287392044
Test: adjust brightness
Change-Id: I730ab114243911bd08f21579ab1d43d60ca4a19b
 2023-06-15 06:35:20 +00:00
eddielan
5efa07a689 fps: Allow fp to access sensor_servie & property am: 86776d4e10 am: cd043b3b2c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/23493472

Change-Id: I03bc670a907948ca8e54985d50cd3e0736076157
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-01 09:50:48 +00:00
eddielan
cd043b3b2c fps: Allow fp to access sensor_servie & property am: 86776d4e10 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/23493472

Change-Id: I97392f0b85cf9fd93d517c025c66ceee0f9c3ebb
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-01 09:06:25 +00:00
eddielan
86776d4e10 fps: Allow fp to access sensor_servie & property 
ELinux : avc:  denied  { find } for pid=826 uid=1000
name=android.frameworks.sensorservice.ISensorManager/default
scontext=u:r:hal_fingerprint_capacitance:s0
tcontext=u:object_r:fwk_sensor_service:s0
tclass=service_manager permissive=0

avc:  denied  { read } for  name="u:object_r:vendor_fingerprint_prop:s0"
dev="tmpfs" ino=380
scontext=u:r:hal_fingerprint_capacitance:s0
tcontext=u:object_r:vendor_fingerprint_prop:s0
tclass=file permissive=0

Bug: 279363703
Test: make selinux_policy -j112
Change-Id: Idd3fe8100a3982a0a0279e44e0be439a16961543
 2023-06-01 05:27:42 +00:00
Adam Shih
b86598fe56 introduce a new sepolicy owner 
Bug: 281631102
Test: N/A
Change-Id: Ia7cba55f4331ef98a101e248de65c89b30415ce3
 2023-05-12 02:31:04 +00:00
Treehugger Robot
fb9ac953e7 Merge "Allow SystemUI to access fp hal." into udc-d1-dev am: 3594c7f674 am: ff2146ca1f am: 29540317c9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22948152

Change-Id: I5ff9d92d9f6addbac58ba89fda0727cad1af4519
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 12:11:44 +00:00
eddielan
8093bdf17c fps: Enable policy for SFPS am: e2906c4eb9 am: a55f6e91fd am: fccea99af1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22808517

Change-Id: I83d2d724f5903dbe882dca85d77339d40c07cc67
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 10:25:35 +00:00
Treehugger Robot
d6c592d3b3 Merge "Allow SystemUI to access fp hal." into udc-d1-dev am: 3594c7f674 am: 2c43f8d529 am: 12b8440cf2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22948152

Change-Id: I9a034ce1378f570d0e4b8bc633aa89717870e81d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 10:08:48 +00:00
eddielan
d919c07968 fps: Enable policy for SFPS am: e2906c4eb9 am: 7bb8d4a75d am: ceb16ed651 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22808517

Change-Id: I4682c26a0c14e8ef81c7a24b613de5da76cdf519
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 10:07:46 +00:00
Treehugger Robot
29540317c9 Merge "Allow SystemUI to access fp hal." into udc-d1-dev am: 3594c7f674 am: ff2146ca1f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22948152

Change-Id: I4c57855b1b3bffe2d088a55662a5b8407791c5a2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 09:28:15 +00:00
eddielan
fccea99af1 fps: Enable policy for SFPS am: e2906c4eb9 am: a55f6e91fd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22808517

Change-Id: I8a72cd38612bd4e028567befbb1449cbea132d3e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 09:28:07 +00:00
Treehugger Robot
12b8440cf2 Merge "Allow SystemUI to access fp hal." into udc-d1-dev am: 3594c7f674 am: 2c43f8d529 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22948152

Change-Id: I5a0182c4d6d9b5896dd5baf0c14a466b50769c20
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 09:23:26 +00:00
eddielan
ceb16ed651 fps: Enable policy for SFPS am: e2906c4eb9 am: 7bb8d4a75d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22808517

Change-Id: I5197112822ae1ab17cab6b59ec7959efc49fe169
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 09:23:06 +00:00
Treehugger Robot
ff2146ca1f Merge "Allow SystemUI to access fp hal." into udc-d1-dev am: 3594c7f674 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22948152

Change-Id: I0bd640dd52ac048d9a49ced1b83694f4fea58e12
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 08:43:32 +00:00
eddielan
a55f6e91fd fps: Enable policy for SFPS am: e2906c4eb9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/comet-sepolicy/+/22808517

Change-Id: I78f087c47530f9cf3e10630c4cd0da93b136d719
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-04 08:43:20 +00:00