Evolution-X-Tensor/device_google_felix
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
130 commits 1 branch 0 tags 122 MiB
Commit graph

130 commits

This branch
This branch
All branches
Author SHA1 Message Date
Xin Li
fe44673ea9 Merge Android 14 
Bug: 298295554
Merged-In: I48f5d334d01d9031b488a0051c84bf4b38d2b09a
Change-Id: Ib270fe228674c231af8414b0645850d16a38eb3a
 2023-10-05 15:33:24 -07:00
Xin Li
ad837e70f4 Merge Android U (ab/10368041) 
Bug: 291102124
Merged-In: Ie57b7ae1cdd680523e78d20809aa9b37051a6808
Change-Id: I90082f41467d176bab16b9f7df30a383735234cb
 2023-08-14 15:33:37 -07:00
Wilson Sung
71e5601787 Update SELinux error am: 3254e69a85 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/23123983

Change-Id: Ie57b7ae1cdd680523e78d20809aa9b37051a6808
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-11 05:37:55 +00:00
Wilson Sung
3254e69a85 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 280706429
Test: scanBugreport
Bug: 281602658
Change-Id: I48f5d334d01d9031b488a0051c84bf4b38d2b09a
 2023-05-10 20:01:01 +08:00
Wilson Sung
68c78d696f Update SELinux error am: 3269d81be0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/23100076

Change-Id: I21659a8c8f6f29663b16b0e26ada56ff2a061c32
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-09 11:11:16 +00:00
Wilson Sung
3269d81be0 Update SELinux error 
Test: scanBugreport
Bug: 281602658
Change-Id: Iea3d0acee3b894b6a262b7cf38a1a53cc2dc7e09
 2023-05-09 10:07:26 +08:00
Chungkai Mei
ce7af37d2d sepolicy: fix avc denials am: 354a3d1de2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/22901828

Change-Id: I922fbc4984ee15b6a5aade14a3fcc2fb653fce1d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 14:55:16 +00:00
Chungkai Mei
354a3d1de2 sepolicy: fix avc denials 
add potential paths for i2c peripheral devices
sine we enable parallel module loading

Test: ABTD https://android-build.googleplex.com/builds/abtd/run/L94600000960253970 https://android-build.googleplex.com/builds/abtd/run/L92800000960257192
Bug: 279848350
Change-Id: I7779752aa79c1e0ffa1d1c5a7150ef5193d4f986
Signed-off-by: Chungkai Mei <chungkai@google.com>
 2023-04-27 12:19:40 +00:00
Wilson Sung
60404f62e3 Update error on ROM 9890454 
Bug: 277155247
Bug: 277155366
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I4de26053ca9b4e572a62a40d73268453cee3b7a1
 2023-04-07 06:37:02 +00:00
Wilson Sung
cb0c1bab29 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 275001798
Test: scanBugreport
Bug: 275001897
Bug: 275001799
Change-Id: Ifa1adaaa2bf33297e3c36a559dccc12726568896
 2023-03-24 11:11:05 +08:00
sukiliu
036e3370c2 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 270633150
Change-Id: I9dc73b7e5be8d872d4c68972df77907e08b656f3
 2023-02-24 09:59:43 +08:00
leochuang
88988e5d2e Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 270247256
Change-Id: Id8a692a7e5bc3979c000b85de60785216b8f6a64
 2023-02-22 10:29:31 +08:00
Ken Yang
698f1f3488 Merge "WLC: Cleanup the sysfs_wlc policies" 2023-01-13 14:41:32 +00:00
Joshua McCloskey
451bd3388d [automerger skipped] Allow SystemUI to access fp hal. am: 663979a772 am: d335b77a09 -s ours 
am skip reason: Merged-In Iefeca78703af30246420a55133c00769b84789f9 with SHA-1 e71f3a8739 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20922424

Change-Id: I186d35f68be30a22c4a7310a973404746c5f3bf5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-01-11 04:30:31 +00:00
Joshua McCloskey
d335b77a09 Allow SystemUI to access fp hal. am: 663979a772 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20922424

Change-Id: I0b77b7218028fc0566f82ecc8d9c70fd66a8ac6c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-01-11 04:05:05 +00:00
Joshua McCloskey
663979a772 Allow SystemUI to access fp hal. 
Bug: 261209932
Test: Verified SystemUI can access HAL extension.
Change-Id: Iefeca78703af30246420a55133c00769b84789f9
Merged-In: Iefeca78703af30246420a55133c00769b84789f9
 2023-01-10 01:39:36 +00:00
Joshua Mccloskey
fd408fc003 Merge "Allow SystemUI to access fp hal." 2023-01-10 01:38:27 +00:00
Joshua McCloskey
e71f3a8739 Allow SystemUI to access fp hal. 
Bug: 261209932
Test: Verified SystemUI can access HAL extension.
Change-Id: Iefeca78703af30246420a55133c00769b84789f9
 2023-01-09 18:00:07 +00:00
Eddie Lan
c6adebd32f Merge "fingerprint: allow fps to access sysfs_leds" into tm-qpr-dev am: c3b8cda0f5 am: 884f7fb41d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20619011

Change-Id: I4f7d7e2ca2fb0f00899fd6766813f6341f7f1283
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-01-09 13:14:59 +00:00
Eddie Lan
884f7fb41d Merge "fingerprint: allow fps to access sysfs_leds" into tm-qpr-dev am: c3b8cda0f5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20619011

Change-Id: I141ec0a89718917b3a1125b0c319ef5f3ee699a8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-01-09 12:38:11 +00:00
Eddie Lan
c3b8cda0f5 Merge "fingerprint: allow fps to access sysfs_leds" into tm-qpr-dev 2023-01-09 12:06:39 +00:00
Ken Yang
b6e7c3d0c7 WLC: Cleanup the sysfs_wlc policies 
Bug: 263830018
Change-Id: I534eda445241e3a907b11004cafb737f6ec63586
Signed-off-by: Ken Yang <yangken@google.com>
 2023-01-06 19:24:38 +00:00
Wasb Liu
d6606b7439 sepolicy: add necessary sepolicy for dual battery am: 49cdfcb3c7 am: 6c46e922ab 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20803963

Change-Id: I99ec363f789026842ff58ba39801f479ac41cf18
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-27 08:53:31 +00:00
Wasb Liu
6c46e922ab sepolicy: add necessary sepolicy for dual battery am: 49cdfcb3c7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20803963

Change-Id: I6f13e1edb662003b8ab907e0be8740aeed4d8fe9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-27 08:17:26 +00:00
Wasb Liu
49cdfcb3c7 sepolicy: add necessary sepolicy for dual battery 
12-22 16:24:51.964  1000   865   865 I auditd  : type=1400 audit(0.0:10): avc: denied { read } for comm="android.hardwar" name="logbuffer_maxfg_secondary" dev="tmpfs" ino=799 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0
12-22 16:24:51.968  1000   865   865 I auditd  : type=1400 audit(0.0:11): avc: denied { read } for comm="android.hardwar" name="logbuffer_maxfg_secondary_monitor" dev="tmpfs" ino=630 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0
12-22 16:24:51.968  1000   865   865 I auditd  : type=1400 audit(0.0:12): avc: denied { read } for comm="android.hardwar" name="logbuffer_dual_batt" dev="tmpfs" ino=1040 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0

12-22 16:23:17.056  1000   522   522 I auditd  : type=1400 audit(0.0:4): avc: denied { read } for comm="binder:522_1" name="wakeup65" dev="sysfs" ino=79686 scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0

Bug: 263496320
Test: no dual batt related denied
Change-Id: I021cd15d771524828a942fe1e4c63e3a24418ae8
Signed-off-by: Wasb Liu <wasbliu@google.com>
 2022-12-23 09:21:05 +00:00
Ken Yang
7cea766957 Merge "WLC: Add device specific sepolicy for wireless_charger" 2022-12-21 08:36:16 +00:00
Ken Yang
97c1d104cc WLC: Add device specific sepolicy for wireless_charger 
Bug: 237600973
Change-Id: I301c636cffb5520aa7bcf998d099c29ca19a2dd6
Signed-off-by: Ken Yang <yangken@google.com>
 2022-12-20 00:58:11 +00:00
Jenny Ho
05a2ff9ae0 remove tracking denial of device chr_file am: 3a92d3d265 am: edce76c2b1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20733206

Change-Id: I93103c93ffe596a8bdd076dc5b281f889060909d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-16 08:04:34 +00:00
Jenny Ho
edce76c2b1 remove tracking denial of device chr_file am: 3a92d3d265 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20733206

Change-Id: I51af87a6a17323a334cf3408e5dd324a097b5571
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-16 07:26:40 +00:00
eddielan
0e76ae19c1 fingerprint: allow fps to access sysfs_leds 
Bug: 261151317
Test: make selinux_policy -j112
Change-Id: If098515510ac48efb7d2ea23f4aeee87869e01e6
 2022-12-15 20:53:11 +08:00
Jenny Ho
3a92d3d265 remove tracking denial of device chr_file 
Bug: 254164096
Change-Id: I300d092df3610f29f05ca65a89eba5459ca0063a
Signed-off-by: Jenny Ho <hsiufangho@google.com>
 2022-12-14 15:21:50 +08:00
Chase Wu
f4be42ae00 Remove sepolicy for vibrator manager service am: c02424796d am: cbfaaeea39 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20610806

Change-Id: If5c216b5bbcbfda16712a8e8421c0498a35b0900
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-13 11:26:50 +00:00
Chase Wu
cbfaaeea39 Remove sepolicy for vibrator manager service am: c02424796d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20610806

Change-Id: I558a8250352ec221945eafaaa5f1054488d94ea5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-13 10:52:38 +00:00
Chase Wu
c02424796d Remove sepolicy for vibrator manager service 
Bug: 260090235
Test: check avc error
Change-Id: I2cb9f9efe849ae6e7fb9b1b5aba2f92a3346af6d
Signed-off-by: Chase Wu <chasewu@google.com>
 2022-12-02 01:09:45 +08:00
Mason Wang
6b826a850d [automerger skipped] Allow dumpstate to access touch vendor nodes[DO NOT MERGE] am: 3c82f575b9 am: 7184709e5f -s ours 
am skip reason: subject contains skip directive

Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20541991

Change-Id: I5b92d44c11fc348616bee7fc2384dcb49d99d833
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-28 02:21:52 +00:00
Mason Wang
7184709e5f Allow dumpstate to access touch vendor nodes[DO NOT MERGE] am: 3c82f575b9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20541991

Change-Id: I0b3d46eab39ba1471b751cdd2810fa0cf27fe723
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-28 01:53:24 +00:00
Mason Wang
3c82f575b9 Allow dumpstate to access touch vendor nodes[DO NOT MERGE] 
Fix following avc denial log:
avc: denied { read } for name="driver_test" dev="proc" ino=4026535583 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { write } for name="driver_test" dev="proc" ino=4026535583 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/proc/fts/driver_test" dev="proc" ino=4026535583 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/sys/devices/platform/10950000.spi/spi_master/spi6/spi6.0/appid" dev="sysfs" ino=110523 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/sys/devices/platform/10950000.spi/spi_master/spi6/spi6.0/stm_fts_cmd" dev="sysfs" ino=110529 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/proc/fts_ext/driver_test" dev="proc" ino=4026535585 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { write } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="appid" dev="sysfs" ino=108992 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/240632721


Bug: 226475119
Bug: 254164096
Test: There are no above avc denial logs.
Change-Id: I0a136a7e259640e3e13ea66c945251cf26878b33
 2022-11-24 15:35:16 +08:00
Nicole Lee
50e095c30d Revert "Allow dumpstate to access touch vendor nodes" am: d6fe8df131 am: bb99a93833 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20519118

Change-Id: I92b3ab14af65c34621046e42dac72e091c59dda1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-22 07:22:33 +00:00
Nicole Lee
bb99a93833 Revert "Allow dumpstate to access touch vendor nodes" am: d6fe8df131 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20519118

Change-Id: I054a4a0ae0d8136e50be58276ff860294096ba7e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-22 06:47:10 +00:00
Nicole Lee
d6fe8df131 Revert "Allow dumpstate to access touch vendor nodes" 
This reverts commit b1d4e8ab2f.

Reason for revert: DroidMonitor: Potential culprit for Bug 260019672 - verifying through ABTD before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.

Change-Id: I8c3bf9982eb9c163e73e75624fd3265ddaa1de95
 2022-11-22 06:02:47 +00:00
eddielan
7fd47dc7fb sepolicy: Allow fingerprint to access fwk hwservice am: f544a5a651 am: 25e250aad0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20441648

Change-Id: I60f5ed42cc20df7c62f0212b68f4a4d0137985b5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-17 04:24:06 +00:00
eddielan
25e250aad0 sepolicy: Allow fingerprint to access fwk hwservice am: f544a5a651 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20441648

Change-Id: I477e36aeecb337216b8bdbe656370885a2699733
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-17 03:29:38 +00:00
eddielan
f544a5a651 sepolicy: Allow fingerprint to access fwk hwservice 
11-11 19:57:30.203   464   464 E SELinux : avc:
denied  { find } for interface=android.frameworks.sensorservice::ISensorManager
sid=u:r:hal_fingerprint_capacitance:s0 pid=903
scontext=u:r:hal_fingerprint_capacitance:s0
tcontext=u:object_r:fwk_sensor_hwservice:s0
tclass=hwservice_manager permissive=0

Bug: 258783592
Test: Build pass
Change-Id: I58a31c04cbb45ab12b0bf42a10c57ddf4f065ee7
 2022-11-11 20:10:20 +08:00
Chase Wu
6fb0d40d35 add sepolicy for vibrator manager service am: 6c42229dcc am: a8a51be9ae 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/18350088

Change-Id: I3f1a2b791dabc0c323e89b9a763be0ff7bc12b03
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-03 10:10:10 +00:00
Chase Wu
a8a51be9ae add sepolicy for vibrator manager service am: 6c42229dcc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/18350088

Change-Id: Ib7de5bab2bda145de85e42607c0fdf32862c5431
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-11-03 08:08:46 +00:00
Chase Wu
6c42229dcc add sepolicy for vibrator manager service 
Bug: 181615889
Test: Run all test suites
Signed-off-by: chasewu <chasewu@google.com>
Change-Id: Ie9e3c86b01afb26557ae69ead813dd123b4df91b
 2022-11-03 12:14:03 +08:00
Mason Wang
98c3066632 Allow dumpstate to access touch vendor nodes am: b1d4e8ab2f am: 1d9860e41c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20305443

Change-Id: I5703d35cc715b30a92fe2632f62fde743e2a8fce
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-28 10:14:40 +00:00
Mason Wang
1d9860e41c Allow dumpstate to access touch vendor nodes am: b1d4e8ab2f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20305443

Change-Id: I0b297e88ad40f6bba61423e203be01297b486ebb
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-28 09:00:57 +00:00
Mason Wang
b1d4e8ab2f Allow dumpstate to access touch vendor nodes 
Fix following avc denial log:
avc: denied { write } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/sys/devices/platform/10950000.spi/spi_master/spi6/spi6.0/stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="driver_test" dev="proc" ino=4026535565 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0 bug=b/240632721
avc: denied { read } for name="appid" dev="sysfs" ino=108992 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/240632721


Bug: 226475119
Bug: 254164096
Test: There are no above avc denial logs.
Change-Id: Ie01104ebfb94154584d9d466cb295095eb634f48
 2022-10-28 12:44:25 +08:00
TreeHugger Robot
b651631851 Merge "sepolicy: remove tracking bugs for PowerStatsHAL and SystemSuspend" into tm-qpr-dev am: 9219b31d13 am: 2157e5e3b0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/felix-sepolicy/+/20279296

Change-Id: Iec0c88d5d2a0ce637fbddc52a50cb392c10a10ea
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-27 04:37:55 +00:00