Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
11223 commits 1 branch 0 tags 494 MiB
Commit graph

11223 commits

This branch
This branch
All branches
Author SHA1 Message Date
terrycrhuang
8b3601f87d Fix hangup Volte call fail 
03-24 19:45:59.920 I auditd  : type=1107 audit(0.0:35): uid=0
auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set }
for property=persist.radio.call.audio.output pid=2328 uid=10260
gid=10260 scontext=u:r:vendor_ims_app:s0:c4,c257,c512,c768
tcontext=u:object_r:radio_prop:s0 tclass=property_service permissive=0'

03-24 19:45:59.923 W libc    : Unable to set property
"persist.radio.call.audio.output" to "0": error code: 0x18

Bug: 183593669
Bug: 182978936
Test: Manual
Change-Id: I7f4491348ca6d97e0997f51359f1c42d98d61c75
 2021-03-25 05:33:56 +08:00
Krzysztof Kosiński
fc18626210 Merge "Revert "Add lazy service binary to hal_camera_default domain."" into sc-dev am: 1314a15cb9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13985005

Change-Id: I38a71c99ebdf718b396e49fd1cf4489b6a1525f7
 2021-03-24 21:33:06 +00:00
Krzysztof Kosiński
058a55ecf4 Disable GCH lazy HAL. am: 8d18593f3c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13985072

Change-Id: Ie017b087aa23623fc2880855c26e75e0a7f909b5
 2021-03-24 21:32:56 +00:00
Krzysztof Kosiński
1314a15cb9 Merge "Revert "Add lazy service binary to hal_camera_default domain."" into sc-dev 2021-03-24 20:57:35 +00:00
Eddie Tashjian
d3579bb3ec Allow init to set RIL properties. 
Init sequence needs to set several properties under *vendor.ril*. Change
permission to set instead of get.

Bug: 183633407
Test: Check selinux denials.
Change-Id: Id7ecff48f36ee87f251ee6121f1782fa57b39844
 2021-03-24 13:35:11 -07:00
Krzysztof Kosiński
8d18593f3c Disable GCH lazy HAL. 
Uses new GCH config toggle to ensure that the lazy HAL is
definitely not present on gs101 devices, as it currently causes
increased startup latency and CTS failures.

Bug: 183612387
Test: mm in hardware/google/camera, verify that lazy HAL is not
present in the out directory.

Change-Id: I3b17be1c216b796a9820e14b3520f6e43c6442ab
 2021-03-24 09:56:47 -07:00
Krzysztof Kosiński
9818e25500 Revert "Add lazy service binary to hal_camera_default domain." 
This reverts commit d02e73b966.

Reason for revert: This HAL is actually not intended to be present
on GS101 devices. The denial logs come from people who did "adb sync"
after building binaries that are not included in the device image.
SELinux should not allow access to this HAL.

Change-Id: Id179023eeb79d749a0bde13e1d83af41fc42780e
 2021-03-24 15:59:55 +00:00
Steven Liu
c6eca53b9e Add sepolicy for the wifi firmware config OTA feature 
Bug: 177083009
Test: the OTA updated files can be updated and applied.
Change-Id: I2f269dbc146aae41cab57abd568af7e26fd23876
 2021-03-24 06:59:08 -07:00
Adam Shih
cce2592b72 adjust parameter for factory SELinux setting am: b80f23dbdc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13974088

Change-Id: Ib8c7fd72f5b60b001c67a9510d801c72164a6f5b
 2021-03-24 13:46:11 +00:00
Adam Shih
e59ff42d5b Turn on SELinux am: 48e389c89c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13787358

Change-Id: I7c15beaedd890d80944f9a4f9502e14cb00c3ef6
 2021-03-24 13:46:08 +00:00
Krzysztof Kosiński
7e469b9941 Mark libGrallocWrapper.so as same-process HAL. 
This library is indirectly loaded by lib_aion_buffer.so, which
is an ABI-stable wrapper for some vendor-specific APIs used by
GCA (the Pixel camera app)

Bug: 182962346
Test: ran GCA on oriole
Change-Id: Ida5171110081cac0ac13ea769f9d434499faebe6
 2021-03-24 06:42:05 -07:00
Adam Shih
5838ee55bc allow bootctl to access devinfo am: 5b5a004593 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13981527

Change-Id: If110be4ad37cedc65fac2e737165d36f3d8881d4
 2021-03-24 13:26:53 +00:00
Adam Shih
b80f23dbdc adjust parameter for factory SELinux setting 
Bug: 171942789
Test: flash factory ROM with SELinux permissive
Change-Id: Iddbc758e562d4a97c82a16322c44af2e24d91ed1
 2021-03-24 13:25:02 +00:00
Adam Shih
48e389c89c Turn on SELinux 
Bug: 171942789
Test: flashall, OTA, adb, bluetooth, wifi, LTE, phone call, SMS,
play audio, video, camera picture, recording, sensors, storage PTS,
thermal PTS, bugreport, GPS, lock screen

Change-Id: I85c22c7a7fd97aa30618455478974a71e19cfcab
 2021-03-24 13:25:02 +00:00
Adam Shih
5b5a004593 allow bootctl to access devinfo 
[   22.798274] type=1400 audit(1616580486.404:10): avc:
denied { write } for comm="boot@1.2-servic" name="sdd1"
dev="tmpfs" ino=705 scontext=u:r:hal_bootctl_default:s0
tcontext=u:object_r:devinfo_block_device:s0 tclass=blk_file
permissive=1
Bug: 177882574
Test: boot to home after factory reset
Change-Id: I6774ffd46a74c75b2fee962757901ea97e9033fe
 2021-03-24 10:32:37 +00:00
SalmaxChang
68d69074e3 mds: Update radio_vendor_data_file permission am: 3a27f85dc8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13975652

Change-Id: Id5fbdc1545c5d144d9d51329754b2697b040a020
 2021-03-24 10:10:12 +00:00
SalmaxChang
3a27f85dc8 mds: Update radio_vendor_data_file permission 
Bug: 181174034
Change-Id: Ie22e19b179d41a97198c07cb922dd5c60f095ad4
 2021-03-24 09:23:18 +00:00
Adam Shih
398ee2091b Merge "fix reset problem caused by ims" into sc-dev am: c58780d645 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13975655

Change-Id: I7f97b020b8ccf4ec69cab4018f1e27591fe51f86
 2021-03-24 08:51:27 +00:00
Adam Shih
c58780d645 Merge "fix reset problem caused by ims" into sc-dev 2021-03-24 08:13:23 +00:00
Adam Shih
692faeedaf fix reset problem caused by ims 
Bug: 183209764
Test: unplug device, reboot, enter sim code and survived
Change-Id: I23c39290731a76ec4a364e4f92d3994254d70eae
 2021-03-24 14:31:31 +08:00
TreeHugger Robot
72c6df70bf Merge "Remove tracking_denials/bootanim.te" into sc-dev am: e8ac32ef2e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13979105

Change-Id: I1190b5b123aea72d0e569e292537fec5fa5291b3
 2021-03-24 05:45:24 +00:00
TreeHugger Robot
5a5f5b98d5 Merge "work around for uwb" into sc-dev am: 9e41379b9e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13960253

Change-Id: I9490b8021f180b9b5aec5db98a7ee49453497993
 2021-03-24 05:44:46 +00:00
TreeHugger Robot
e8ac32ef2e Merge "Remove tracking_denials/bootanim.te" into sc-dev 2021-03-24 05:06:44 +00:00
TreeHugger Robot
9e41379b9e Merge "work around for uwb" into sc-dev 2021-03-24 05:01:12 +00:00
Daeho Jeong
f8abad83e4 init.rc: change the ownership of compression sysfs nodes am: e966b2a635 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13921154

Change-Id: I7c533d3a05bc1275a5d99fcd8a2ee2b9185d2eb9
 2021-03-24 04:19:42 +00:00
SalmaxChang
dfd490b604 vendor_init: Update tracking denials am: 14d068b640 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13899374

Change-Id: If2aa80b11fe37122ce072c2a019dbe2aaea3aa2e
 2021-03-24 04:02:11 +00:00
SalmaxChang
15ef0fcb99 init: Remove duplicated folders creation am: 080d173c55 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13895469

Change-Id: I90bc184382e01128dd65e9b84951d2b6b859178f
 2021-03-24 04:02:11 +00:00
TreeHugger Robot
57226560a8 Merge "update error on ROM 7230950" into sc-dev am: 1bc06a6de6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13977868

Change-Id: I3ae2d34b90ddc511af1056141d5decee00dcf2bc
 2021-03-24 04:01:31 +00:00
Daeho Jeong
e966b2a635 init.rc: change the ownership of compression sysfs nodes 
Changed the ownership of compression sysfs nodes for Pixelstats to reset
these values after reading them.

Test: check the ownership of /dev/sys/fs/by-name/userdata/compr_*
Bug: 173399386
Bug: 170789472
Signed-off-by: Daeho Jeong <daehojeong@google.com>
Change-Id: I25bd80fb4b3db855de3c536084cf4b3c14bc8d74
 2021-03-24 03:57:45 +00:00
SalmaxChang
14d068b640 vendor_init: Update tracking denials 
Bug: 176528556
Change-Id: I1ad621c14a1705420f63aeb63b0c68452d991f93
 2021-03-24 03:49:03 +00:00
SalmaxChang
080d173c55 init: Remove duplicated folders creation 
The fstab will auto create folder as mount.

Bug: 176528556
Change-Id: I78ef08e0b904b4e58541a92775c9918f2538fa77
 2021-03-24 03:48:55 +00:00
Jesse Hall
6efd563361 Remove tracking_denials/bootanim.te 
The action that was being denied no longer occurs.

Bug: 180567480
Test: boot past bootanim, check audit log
Change-Id: I58a1b307538a1198d69120c0797a9e0542f30bdf
 2021-03-23 20:43:59 -07:00
TreeHugger Robot
1bc06a6de6 Merge "update error on ROM 7230950" into sc-dev 2021-03-24 03:28:03 +00:00
TreeHugger Robot
e1a5e4c82c Merge "Add se-policy for new GRIL service and RadioExt hal APIs" into sc-dev am: fb3fe04feb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13974811

Change-Id: I6ab45de430900ff6c0ce18eedf678d34fac1cbcd
 2021-03-24 02:55:47 +00:00
TreeHugger Robot
abb3620d8f Merge "Add the sepolicy for UWB hal" into sc-dev am: 40df476219 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13874847

Change-Id: I9c6caf5690cb247d9d2ec079cbe829169e60f181
 2021-03-24 02:55:02 +00:00
TreeHugger Robot
fb3fe04feb Merge "Add se-policy for new GRIL service and RadioExt hal APIs" into sc-dev 2021-03-24 02:39:23 +00:00
TreeHugger Robot
40df476219 Merge "Add the sepolicy for UWB hal" into sc-dev 2021-03-24 02:13:43 +00:00
Adam Shih
d28724fdb1 update error on ROM 7230950 
Bug: 183560076
Bug: 183560282
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I329cd3f1e4c5eed986c21724bf42730bed46ab3b
 2021-03-24 10:03:35 +08:00
TreeHugger Robot
3a05b06511 Merge "Fix denials for ril_config_service_app" into sc-dev am: 835a255138 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13960264

Change-Id: I5494cde9c8f7b4c04220d19e5b614a7560407445
 2021-03-24 01:35:47 +00:00
TreeHugger Robot
13b3e58059 Merge "Allow Exoplayer access to the vstream-secure heap for secure playback" into sc-dev am: d70813575b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13974361

Change-Id: I5b7c199261a4f46f3ab6ca6caa019a41889cf7cc
 2021-03-24 01:23:22 +00:00
Adam Shih
77f6de6ea6 work around for uwb 
Bug: 171943668
Test: dw3000 kthread and uwb service came up fine
Change-Id: I4288e07b9b9a2741bfe64b35bd4681ffe4a66039
 2021-03-24 00:41:27 +00:00
TreeHugger Robot
835a255138 Merge "Fix denials for ril_config_service_app" into sc-dev 2021-03-24 00:41:22 +00:00
TreeHugger Robot
d70813575b Merge "Allow Exoplayer access to the vstream-secure heap for secure playback" into sc-dev 2021-03-24 00:26:19 +00:00
Oleg Matcovschi
eb87ec1558 BoardConfig: move androidboot.console to cmdline am: 9963cf04e0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13973937

Change-Id: I4819dc478581600f3f24075626ea57e212790bda
 2021-03-23 23:14:35 +00:00
Christine Franks
697b71b400 Merge "Add uhid access for exo" into sc-dev am: 28ab0ae8c3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13933043

Change-Id: Idb4c0e31fa115cc5ff381ed17872f8dce21a2590
 2021-03-23 22:33:21 +00:00
labib
a0c5ec2305 Add se-policy for new GRIL service and RadioExt hal APIs 
Bug: 172294179
Change-Id: Ief4c7ec7959676126f35037006016e1454a34f5e
 2021-03-24 06:16:03 +08:00
Christine Franks
28ab0ae8c3 Merge "Add uhid access for exo" into sc-dev 2021-03-23 21:57:15 +00:00
Hridya Valsaraju
fb862c0888 Allow Exoplayer access to the vstream-secure heap for secure playback 
Fixes the following denials:

avc: denied { read } for name="vstream-secure" dev="tmpfs"
ino=736 scontext=u:r:untrusted_app_25:s0:c512,c768
tcontext=u:object_r:dmabuf_heap_device:s0 tclass=chr_file permissive=0
app=com.google.android.exoplayer.demo
avc: denied { read } for name="vstream-secure" dev="tmpfs" ino=736
scontext=u:r:untrusted_app_25:s0:c512,c768
tcontext=u:object_r:dmabuf_heap_device:s0
tclass=chr_file permissive=0 app=com.google.android.exoplayer.demo
avc: denied { read } for name="vstream-secure" dev="tmpfs" ino=736
scontext=u:r:untrusted_app_25:s0:c512,c768
tcontext=u:object_r:dmabuf_heap_device:s0
tclass=chr_file permissive=0 app=com.google.android.exoplayer.demo

Bug: 178865267
Test: no more denials
Change-Id: I6612bd56c49558b13e2ae72cfbf3552715729e7a
Signed-off-by: Hridya Valsaraju <hridya@google.com>
 2021-03-23 14:37:01 -07:00
Oleg Matcovschi
9963cf04e0 BoardConfig: move androidboot.console to cmdline 
Bug: 183531243
Change-Id: Ida1dd4c8f3a2b57a64955f6002c6bace1d0b40c9
 2021-03-23 14:08:58 -07:00
Stephane Lee
81ba287759 Add UeventListener to pixelstats in gs101 am: 33a1ce7421 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101/+/13906565

Change-Id: I674fadd4b9dafff509137ed9569d6a42e5f6bb8a
 2021-03-23 20:08:21 +00:00