com.qorvo.uwb: signed with dedicated key and running as android.uid.uwb uid

Test: 05-11 21:05:48.077 786 786 I qorvo.uwb.main: UWB HAL start 05-11 21:05:48.078 412 412 I servicemanager: Found hardware.qorvo.uwb.IUwb/default in device VINTF manifest. 05-11 21:05:50.960 1639 1639 W PackageSettings: Missing permission state for package: com.qorvo.uwbtestapp.system 05-11 21:05:53.530 1639 1639 V StorageManagerService: Package com.qorvo.uwb does not have legacy storage 05-11 21:05:53.548 1639 1639 V StorageManagerService: Package com.qorvo.uwbtestapp.system does not have legacy storage 05-11 21:05:56.571 1639 1902 I am_proc_start: [0,3055,1083,com.qorvo.uwb,added application,com.qorvo.uwb] 05-11 21:05:56.571 1639 1902 I ActivityManager: Start proc 3055:com.qorvo.uwb/1083 for added application com.qorvo.uwb 05-11 21:05:56.653 1639 2264 I am_proc_bound: [0,3055,com.qorvo.uwb] 05-11 21:05:56.709 3055 3055 I TetheringManager: registerTetheringEventCallback:com.qorvo.uwb 05-11 21:05:56.710 3055 3055 V GraphicsEnvironment: ANGLE Developer option for 'com.qorvo.uwb' set to: 'default' 05-11 21:06:05.045 1639 1900 I am_pss : [3055,1083,com.qorvo.uwb,5719040,4239360,0,88702976,2,0,6] 05-11 21:06:07.233 1639 1981 I am_compact: [3055,com.qorvo.uwb,all,84816,39052,44628,0,-816,0,-816,816,26,0,0,-800,0,1921532,-768] 05-11 21:06:38.442 786 786 I qorvo.Uwb: open 05-11 21:06:38.443 786 786 I qorvo.uwb.McpsUtils: ListHardware 05-11 21:06:38.443 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse 05-11 21:06:38.443 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse: Read message 05-11 21:06:38.443 786 786 I qorvo.uwb.IeeeUtils: ListDevices 05-11 21:06:38.443 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse 05-11 21:06:38.443 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse: Read message 05-11 21:06:38.443 786 786 I qorvo.uwb.UwbIface: Load calibration on wpan0, hw index: 0 05-11 21:06:38.445 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse 05-11 21:06:38.445 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse: Read message 05-11 21:06:38.445 786 786 I qorvo.uwb.UwbIface: Load properties on wpan0, hw index: 0 05-11 21:06:38.446 786 786 I qorvo.Uwb: getIface 05-11 21:06:38.449 786 786 I qorvo.uwb.UwbIface: firaController 05-11 21:06:38.449 786 786 I qorvo.Uwb: listHardwareIndex 05-11 21:06:38.449 786 786 I qorvo.uwb.McpsUtils: ListHardware 05-11 21:06:38.449 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse 05-11 21:06:38.450 786 786 I qorvo.uwb.NlSocket: SendAndAwaitResponse: Read message 05-11 21:06:38.450 786 786 I qorvo.Uwb: getIface 05-11 21:06:38.450 786 786 I qorvo.uwb.UwbIface: cccController Bug: 187766150 Signed-off-by: Thierry Strudel <tstrudel@google.com> Change-Id: Ie667a666a445e907aa99542f1c52046522b5dd02
2021-05-11 14:50:36 -07:00 · 2021-05-11 14:50:36 -07:00 · 03f4884884
commit 03f4884884
parent 99853e483b
5 changed files with 38 additions and 2 deletions
--- a/whitechapel/vendor/google/certs/com_qorvo_uwb.x509.pem
+++ b/whitechapel/vendor/google/certs/com_qorvo_uwb.x509.pem
@ -0,0 +1,29 @@
+-----BEGIN CERTIFICATE-----
+MIIF1TCCA72gAwIBAgIVALSpAFqvtr1ntTS7YgB0Y5R6WqEtMA0GCSqGSIb3DQEBCwUAMHoxCzAJ
+BgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1Nb3VudGFpbiBWaWV3MRQw
+EgYDVQQKEwtHb29nbGUgSW5jLjEQMA4GA1UECxMHQW5kcm9pZDEWMBQGA1UEAwwNY29tX3FvcnZv
+X3V3YjAgFw0yMTA1MDQwNTAyMDlaGA8yMDUxMDUwNDA1MDIwOVowejELMAkGA1UEBhMCVVMxEzAR
+BgNVBAgTCkNhbGlmb3JuaWExFjAUBgNVBAcTDU1vdW50YWluIFZpZXcxFDASBgNVBAoTC0dvb2ds
+ZSBJbmMuMRAwDgYDVQQLEwdBbmRyb2lkMRYwFAYDVQQDDA1jb21fcW9ydm9fdXdiMIICIjANBgkq
+hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyoe1/UDAyMZd5iWqaKPDKN0cCESsWBTTkuLFpzMfcTEa
+IyMORaIYriuAxvWhNzidPQvvRPyw0XQbl7GZLjXLF004G5xPTXFHIdtWv/scuC53INqTerppcHeW
+fP4hfJPbZMQNcDB9EHa2bhA0wPdfoJD4cz8T7sgQcbRirdR8KoiOVWYe5UTSdk0df2IbiMZav2DJ
+KhFql323emi4QHoDeUMAYy35mTh5vhfJ8NrCRAUwMh0zlw6LwZw/Dr8AbzDXl4Mo6Ij2pTn3/1zW
+BPNkJonvONiMvuUUDl6LnP/41qhxYSg9RBp3wBJLknmfD/hEaXxTSLdkJyF43t61sU12mDQbLu4s
+ZoiQKeKMJ0VpC56gUzkpnx3pzusq+/bAlTXf8Tfqrm7nizwR/69kntNYp8iaUJnvQQzlChc2lg2X
+QNzf6zShPptpPqJIgmWawH6DL8JPHgkpguWyz47dWHCLnTfp8miEZPrQkPKL13SCMYCwxmlNYNWG
+gUFPX5UJfnNVH4y2gPpXssROyKQKp/ArZkWb2zURrC1RUvNFADvvFt+hb2iXXVnfVeEtKAkSdhOj
+RHwXhc/EtraSMMYUeO/uhUiPmPFR0FVLxCIm6i91/xqgWhKgRN0uatornO3lSNgzk4c7b0JCncEn
+iArWJ516/nqWIvEdYjcqIBDAdSx8S1sCAwEAAaNQME4wDAYDVR0TBAUwAwEB/zAdBgNVHQ4EFgQU
+EGKtCMO6w0UKLbAmd/laZERZZrkwHwYDVR0jBBgwFoAUEGKtCMO6w0UKLbAmd/laZERZZrkwDQYJ
+KoZIhvcNAQELBQADggIBAIRowmuGiFeZdyDsbYi0iYISNW2HID4uLM3Pp8CEx5swlntJu1Z19R9t
+fzzY9lvcMgdbdVJYnGrHzUGUCVqbhfDH7GxP9ybg1QUqYxi6AvZU3wrRqjoUoDw7HlecNBXFZI6z
+0f2J3XSzST3kq5lCuUaEKGHkU8jVgwqVGMcz1foLGzBXQhMgIKl966c5DWoXsLToBCXrNgDokkHe
+cj9tI1ufsWrSxl5/AT0/DMjHkcBmZk78RiTcGJtSZU8YwqNIQa+U2hpDE34iy2LC6YEqMKggjCm0
+6nOBbIH0EXnrr0iBX3YJmDM8O4a9eDpI7FSjabPx9YvfQne08pNwYkExOMafibyAwt7Du0cpxNkg
+NE3xeDZ+TVr+4I10HF1gKpJ+rQsBOIYVTWLKATO4TMQxLNLY9oy2gt12PcsCdkOIThX4bAHXq1eY
+ulAxoA7Hba2xq/wnh2JH5VZIjz3yZBJXX/GyFeHkqv7wFRVrx4DjZC1s5uTdqDh6y8pfM49w9/Zp
+BKtz5B+37bC9FmM+ux39MElqx+kbsITzBDtDWa2Q8onWQR0R4WHI43n1mJSvW4cdR6Xf/a1msPXh
+NHc3XCJYq4WvlMuXWEGVka20LPJXIjiuU3sB088YpjAG1+roSn//CL8N9iDWHCRXy+UKElIbhWLz
+lHV8gmlwBAuAx9ITcTJr
+-----END CERTIFICATE-----
--- a/whitechapel/vendor/google/keys.conf
+++ b/whitechapel/vendor/google/keys.conf
@ -1,2 +1,5 @@
 [@MDS]
 ALL : device/google/gs101-sepolicy/whitechapel/vendor/google/certs/com_google_mds.x509.pem
+
+[@UWB]
+ALL : device/google/gs101-sepolicy/whitechapel/vendor/google/certs/com_qorvo_uwb.x509.pem
--- a/whitechapel/vendor/google/mac_permissions.xml
+++ b/whitechapel/vendor/google/mac_permissions.xml
@ -24,4 +24,7 @@
    <signer signature="@MDS" >
        <seinfo value="mds" />
    </signer>
+    <signer signature="@UWB" >
+        <seinfo value="uwb" />
+    </signer>
 </policy>
--- a/whitechapel/vendor/google/seapp_contexts
+++ b/whitechapel/vendor/google/seapp_contexts
@ -43,4 +43,4 @@ user=_app seinfo=platform name=com.google.googlecbrs domain=cbrs_setup_app type=
 user=_app isPrivApp=true  seinfo=platform name=com.thales.device.ofl.app.basicagent domain=ofl_app type=app_data_file levelFrom=user

 # Qorvo UWB system app
-user=system seinfo=platform name=com.qorvo.uwb domain=uwb_vendor_app type=uwb_vendor_data_file levelFrom=all
+user=uwb isPrivApp=true seinfo=uwb name=com.qorvo.uwb domain=uwb_vendor_app type=uwb_vendor_data_file levelFrom=all
--- a/whitechapel/vendor/google/uwb_vendor_app.te
+++ b/whitechapel/vendor/google/uwb_vendor_app.te
@ -8,4 +8,5 @@ allow uwb_vendor_app app_api_service:service_manager find;
 allow uwb_vendor_app hal_uwb_service:service_manager find;
 allow uwb_vendor_app nfc_service:service_manager find;

-allow uwb_vendor_app uwb_vendor_data_file:dir { getattr search };
+allow uwb_vendor_app uwb_vendor_data_file:file create_file_perms;
+allow uwb_vendor_app uwb_vendor_data_file:dir create_dir_perms;