From cdcd803b5a088ffd189a7c3ee8d206e8368ab74c Mon Sep 17 00:00:00 2001
From: Jayachandran C <jayachandranc@google.com>
Date: Thu, 2 Feb 2023 22:25:03 +0000
Subject: [PATCH 1/2] Allow radio to access aoc_device for RTP
 encoding/decoding

This CL labels new AoC devices used for RTP processing

This fixes the follow denials
type=1400 audit(0.0:11): avc: denied { write } for name="acd-audio_rtp_tx" dev="tmpfs" ino=1185 scontext=u:r:radio:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0
type=1400 audit(0.0:12): avc: denied { read } for name="acd-audio_rtp_rx" dev="tmpfs" ino=1186 scontext=u:r:radio:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0

Bug: 259178236
Test: Manually verified on the device with AOC
Change-Id: Iffe0de3a27c89892af7ae280fa39dd28a0052542
---
 aoc/sepolicy/file_contexts | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/aoc/sepolicy/file_contexts b/aoc/sepolicy/file_contexts
index 399a6dc..3fc88b5 100644
--- a/aoc/sepolicy/file_contexts
+++ b/aoc/sepolicy/file_contexts
@@ -5,6 +5,8 @@
 /dev/acd-audio_input_tuning         u:object_r:aoc_device:s0
 /dev/acd-audio_input_bulk_tx        u:object_r:aoc_device:s0
 /dev/acd-audio_input_bulk_rx        u:object_r:aoc_device:s0
+/dev/acd-audio_rtp_tx               u:object_r:aoc_device:s0
+/dev/acd-audio_rtp_rx               u:object_r:aoc_device:s0
 /dev/acd-sound_trigger              u:object_r:aoc_device:s0
 /dev/acd-hotword_notification       u:object_r:aoc_device:s0
 /dev/acd-hotword_pcm                u:object_r:aoc_device:s0

From c04e69ae6233e29924af61339cc186f4fb6eac0c Mon Sep 17 00:00:00 2001
From: Martin Liu <liumartin@google.com>
Date: Thu, 16 Feb 2023 08:06:51 +0800
Subject: [PATCH 2/2] gs_watchdogd: add shutdown critical option

Watchdogd should be alive to complete shutdown
safely. This also aligns the behavior with previous
watchdogd.

Bug: 267080705
Test: boot
Change-Id: Iad85a0d730d032ae57530e0aa6965e2123488b2f
Signed-off-by: Martin Liu <liumartin@google.com>
---
 gs_watchdogd/init.gs_watchdogd.rc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/gs_watchdogd/init.gs_watchdogd.rc b/gs_watchdogd/init.gs_watchdogd.rc
index 450daa1..f58ce50 100644
--- a/gs_watchdogd/init.gs_watchdogd.rc
+++ b/gs_watchdogd/init.gs_watchdogd.rc
@@ -3,6 +3,7 @@ service gs_watchdogd /system_ext/bin/gs_watchdogd 10 20
     class core
     oneshot
     seclabel u:r:gs_watchdogd:s0
+    shutdown critical
 
 on property:vendor.all.devices.ready=1
     start gs_watchdogd